Lucene search
PRIOn knowledge basePRION:CVE-2021-1224HistoryJan 13, 2021 - 10:15 p.m.
Design/Logic Flaw
2021-01-1322:15:00
PRIOn knowledge base
www.prio-n.com
9
Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload.
Related
veracode
veracode
Authorization Bypass
2023-03-11 22:15:52
cvelist
cvelist
nvd
nvd
CVE-2021-1224
2021-01-13 22:15:20
cisco
cisco
Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability
2021-01-13 16:00:00
ubuntucve
ubuntucve
CVE-2021-1224
2021-01-13 00:00:00
debiancve
debiancve
CVE-2021-1224
2021-01-13 22:15:20
cve
cve
CVE-2021-1224
2021-01-13 22:15:20
rosalinux
rosalinux
Advisory ROSA-SA-2021-1971
2021-07-02 18:08:02
debian
debian
[SECURITY] [DSA 5354-1] snort security update
2023-02-18 16:38:22
[SECURITY] [DLA 3317-1] snort security update
2023-02-10 23:23:58
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0117)
2023-03-31 00:00:00
Debian: Security Advisory (DSA-5354-1)
2023-02-19 00:00:00
Debian: Security Advisory (DLA-3317-1)
2023-02-11 00:00:00
nessus
nessus
Debian DSA-5354-1 : snort - security update
2023-02-18 00:00:00
Debian DLA-3317-1 : snort - LTS security update
2023-02-11 00:00:00
osv
osv
snort - security update
2023-02-18 00:00:00
snort - security update
2023-02-11 00:00:00
mageia
mageia
Updated snort packages fix security vulnerability
2023-03-31 03:13:46