Lucene search
CiscoCVELIST:CVE-2020-3299HistoryOct 21, 2020 - 12:00 a.m.
CVE-2020-3299 Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass Vulnerability
2020-10-2100:00:00
CWE-693
cisco
raw.githubusercontent.com
3
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.
Related
debiancve
debiancve
CVE-2020-3299
2020-10-21 19:15:00
prion
prion
Design/Logic Flaw
2020-10-21 19:15:00
nessus
nessus
Multiple Cisco Products SNORT HTTP Detection Engine File Policy Bypass (cisco-sa-ftd-bypass-3eCfd24j)
2020-10-30 00:00:00
Debian DSA-5354-1 : snort - security update
2023-02-18 00:00:00
Debian DLA-3317-1 : snort - LTS security update
2023-02-11 00:00:00
cisco
cisco
cve
cve
CVE-2020-3299
2020-10-21 19:15:00
ubuntucve
ubuntucve
CVE-2020-3299
2020-10-21 00:00:00
veracode
veracode
Authorization Bypass
2023-03-10 19:18:15
openvas
openvas
Debian: Security Advisory (DSA-5354-1)
2023-02-19 00:00:00
Mageia: Security Advisory (MGASA-2023-0117)
2023-03-31 00:00:00
Debian: Security Advisory (DLA-3317-1)
2023-02-11 00:00:00
osv
osv
snort - security update
2023-02-18 00:00:00
snort - security update
2023-02-11 00:00:00
debian
debian
[SECURITY] [DLA 3317-1] snort security update
2023-02-10 23:24:22
[SECURITY] [DSA 5354-1] snort security update
2023-02-18 16:38:22
mageia
mageia
Updated snort packages fix security vulnerability
2023-03-31 03:13:46