CVE-2021-1224

🗓️ 13 Jan 2021 21:16:53Reported by ciscoType

cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 94 Views

Multiple Cisco products affected by TCP Fast Open vulnerability with Snort detection engine allowing bypass of HTTP file policy

Reporter	Title	Published	Views	Family All 34
Cisco	Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability	13 Jan 202116:00	–	cisco
CNNVD	Security Vulnerabilities in Multiple Cisco Products	13 Jan 202100:00	–	cnnvd
Cvelist	CVE-2021-1224 Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability	13 Jan 202121:16	–	cvelist
Debian	[SECURITY] [DLA 3317-1] snort security update	10 Feb 202323:23	–	debian
Debian	[SECURITY] [DSA 5354-1] snort security update	18 Feb 202316:38	–	debian
Debian CVE	CVE-2021-1224	13 Jan 202121:16	–	debiancve
Tenable Nessus	Debian dla-3317 : snort - security update	11 Feb 202300:00	–	nessus
Tenable Nessus	Debian DSA-5354-1 : snort - security update	18 Feb 202300:00	–	nessus
Tenable Nessus	Linux Distros Unpatched Vulnerability : CVE-2021-1224	10 Sep 202500:00	–	nessus
EUVD	EUVD-2021-6691	3 Oct 202520:07	–	euvd

NVD

Node

cisco firepower_threat_defenseRange<6.7.0

cisco secure_firewall_management_centerMatch2.9.14.0

cisco secure_firewall_management_centerMatch2.9.15

cisco secure_firewall_management_centerMatch2.9.16

cisco secure_firewall_management_centerMatch2.9.17

cisco secure_firewall_management_centerMatch2.9.18

cisco secure_firewall_management_centerMatch3.0.1

Node

cisco ios_xeRange<17.4.1

AND

cisco 1100-4p_integrated_services_routerMatch-

cisco 1100-8p_integrated_services_routerMatch-

cisco 1101-4p_integrated_services_routerMatch-

cisco 1109-2p_integrated_services_routerMatch-

cisco 1109-4p_integrated_services_routerMatch-

cisco 1111x-8p_integrated_services_routerMatch-

cisco 4221_integrated_services_routerMatch-

cisco 4321_integrated_services_routerMatch-

cisco 4331_integrated_services_routerMatch-

cisco 4351_integrated_services_routerMatch-

cisco 4431_integrated_services_routerMatch-

cisco 4451-x_integrated_services_routerMatch-

cisco 4461_integrated_services_routerMatch-

cisco csr_1000vMatch-

cisco isa_3000Match-

Node

snort snortRange<2.9.17

Node

cisco meraki_mx64_firmwareMatch-

AND

cisco meraki_mx64Match-

Node

cisco meraki_mx64w_firmwareMatch-

AND

cisco meraki_mx64wMatch-

Node

cisco meraki_mx67_firmwareMatch-

AND

cisco meraki_mx67Match-

Node

cisco meraki_mx67c_firmwareMatch-

AND

cisco meraki_mx67cMatch-

Node

cisco meraki_mx67w_firmwareMatch-

AND

cisco meraki_mx67wMatch-

Node

cisco meraki_mx68_firmwareMatch-

AND

cisco meraki_mx68Match-

Node

cisco meraki_mx68cw_firmwareMatch-

AND

cisco meraki_mx68cwMatch-

Node

cisco meraki_mx68w_firmwareMatch-

AND

cisco meraki_mx68wMatch-

Node

cisco meraki_mx100_firmwareMatch-

AND

cisco meraki_mx100Match-

Node

cisco meraki_mx84_firmwareMatch-

AND

cisco meraki_mx84Match-

Node

cisco meraki_mx250_firmwareMatch-

AND

cisco meraki_mx250Match-

Node

cisco meraki_mx450_firmwareMatch-

AND

cisco meraki_mx450Match-

[
  {
    "vendor": "Cisco",
    "product": "Cisco Firepower Threat Defense Software",
    "versions": [
      {
        "version": "n/a",
        "status": "affected"
      }
    ]
  }
]

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-tfo-bypass-MmzZrtes
lists	www.lists.debian.org/debian-lts-announce/2023/02/msg00011.html
debian	www.debian.org/security/2023/dsa-5354

26 Nov 2024 16:09Current

5.7Medium risk

Vulners AI Score5.7

CVSS 25

CVSS 3.15.3 - 5.8

EPSS0.00646

SSVC

CWE-693