PT-2021-1770 · Cisco +1 · Snort +1

🗓️ 13 Jan 2021 00:00:00Reported by Positive TechnologiesType

ptsecurity🔗 dbugs.ptsecurity.com👁 1 Views

Snort detection engine vulnerability allows unauthenticated remote bypass of HTTP file policy via crafted range header.

Reporter	Title	Published	Views	Family All 168
AlpineLinux	CVE-2021-40114	27 Oct 202118:56	–	alpinelinux
BDU FSTEC	The vulnerabilities of the Snort mechanism on the Cisco IOS operating system, the Cisco Firepower Threat Defense network firewall, and the Cisco Firepower Management Center network management software allow attackers to compromise the integrity of protected information.	19 May 202000:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Snort intrusion detection system, which includes Cisco Firepower Threat Defense (FTD) for microprogramming network firewalls, Cisco SD-WAN for programmatically defined networks, Cisco IOS XE for network operating systems, and Cisco Meraki for networking devices, allows attackers to bypass security measures and execute malicious activities.	19 Nov 202000:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the TCP Fast Open (TFO) protocol extension in the Snort intrusion detection system allows a hacker to bypass the configured file policy for HTTP.	2 Feb 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the detection mechanism for applications in the Snort intrusion detection system allows attackers to increase their privileges.	2 Feb 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Snort intrusion detection system, related to errors in processing HTTP headers, allows a perpetrator to bypass the configured file policy for HTTP.	2 Feb 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD), which includes network devices like Cisco Catalyst, routers such as ISR and ISA, and the virtual router with integrated ISRv services, allows attackers to compromise the integrity of protected information.	5 May 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Snort intrusion detection system of Cisco Firepower Threat Defense (FTD), which includes network devices like Cisco Catalyst, routers such as ISR and ISA, and the virtual router with integrated ISRv services, allows attackers to compromise the integrity of protected information.	24 May 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability of the Server Name Identification (SNI) component of the Cisco Web Security Appliance internet server, the micro-programming software for Cisco Firepower Threat Defense network firewalls, and the intrusion detection systems allows a malicious actor to gain full control over the compromised host and unauthorized access to protected information.	20 Aug 202100:00	–	bdu_fstec
BDU FSTEC	The vulnerability in the implementation of the Unified Threat Defense function for Cisco IOS XE operating systems, the Snort intrusion detection system, the microprogramming-based network interface device Cisco Firepower Threat Defense, and the Cisco IOS XE SD-WAN software allows a threat actor to trigger a service failure.	1 Dec 202100:00	–	bdu_fstec

Source	Link
security-tracker	www.security-tracker.debian.org/tracker/source-package/snort
cve	www.cve.org/CVERecord
bdu	www.bdu.fstec.ru/vul/2021-00416
nvd	www.nvd.nist.gov/vuln/detail/CVE-2021-1223
osv	www.osv.dev/vulnerability/DLA-3317-1
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
security-tracker	www.security-tracker.debian.org/tracker/DLA-3317-1
bdu	www.bdu.fstec.ru/vul/2021-02334
bdu	www.bdu.fstec.ru/vul/2021-00435

13 Dec 2024 00:00Current

5.6Medium risk

Vulners AI Score5.6

CVSS 3.16.8 - 8.6

CVSS 27.8

CVSS 35.8

EPSS0.03416

SSVC