Lucene search

PRIOn knowledge basePRION:CVE-2023-20246

HistoryNov 01, 2023 - 6:15 p.m.

Improper access control

2023-11-0118:15:00

PRIOn knowledge base

www.prio-n.com

cisco

vulnerability

bypass

access control

snort

logic error

remote attacker

nvd

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

27.0%

JSON

Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system.

This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system.

CPENameOperatorVersion
firepower_threat_defensege7.0.0
firepower_threat_defensele7.3.1.1
ios_xege17.12
ios_xelt17.12.2
snortge3.0.0
snortlt3.1.57.0

Name	Operator	Version
firepower_threat_defense	ge	7.0.0
firepower_threat_defense	le	7.3.1.1
ios_xe	ge	17.12
ios_xe	lt	17.12.2
snort	ge	3.0.0
snort	lt	3.1.57.0

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ftd-snort3acp-bypass-3bdR2BEh