Lucene search
K

268 matches found

HackRead
HackRead
added 2025/01/15 2:0 p.m.8 views

Sweet Security Introduces Patent-Pending LLM-Powered Detection Engine, Reducing Cloud Detection Noise to 0.04%

Tel Aviv, Israel, 15th January 2025, CyberNewsWire...

7.3AI score
Exploits0
OSV
OSV
added 2024/11/15 5:15 p.m.2 views

UBUNTU-CVE-2021-1494

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this...

5.8CVSS5.8AI score0.01072EPSS
Exploits0References3
NVD
NVD
added 2024/11/15 4:15 p.m.44 views

CVE-2022-20685

A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an integer overflow while processing Modbus traffic. An attacker could exploit th...

7.5CVSS0.01386EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/11/15 3:36 p.m.10 views

CVE-2022-20685 Multiple Cisco Products Snort Modbus Denial of Service Vulnerability

A vulnerability in the Modbus preprocessor of the Snort detection engine could allow an unauthenticated, remote attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to an integer overflow while processing Modbus traffic. An attacker could exploit th...

7.5CVSS7.9AI score0.01386EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2024/11/05 12:0 a.m.2 views

Cisco Firepower Threat Defense Software Database with Snort Detection Engine Security Policy Bypass and DoS Issue (cisco-sa-ftd-vdb-snort-djj4cnbR)

According to its self-reported version, Cisco Firepower Threat Defense Software Database with Snort Detection Engine Security Policy Bypass and Denial of Service Issue is affected by a vulnerability. Please see the included Cisco BIDs and Cisco Security Advisory for more information. TRUSTED...

5.5AI score
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/10/23 5:36 p.m.7 views

CVE-2024-20407

A vulnerability in the interaction between the TCP Intercept feature and the Snort 3 detection engine on Cisco Firepower Threat Defense FTD Software could allow an unauthenticated, remote attacker to bypass configured policies on an affected system. Devices that are configured with Snort 2 are no...

5.8CVSS6.9AI score0.00391EPSS
Exploits0References1
NVD
NVD
added 2024/10/23 5:15 p.m.10 views

CVE-2024-20342

Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter. This vulnerability is due to an incorrect connection count comparison. An attacker...

8.6CVSS0.00511EPSS
Exploits0References1
OSV
OSV
added 2024/10/23 5:15 p.m.7 views

CVE-2024-20342

Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter. This vulnerability is due to an incorrect connection count comparison. An attacker...

8.6CVSS7.1AI score
Exploits0References1
NVD
NVD
added 2024/10/23 5:15 p.m.7 views

CVE-2024-20351

A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine of Cisco Firepower Threat Defense FTD Software and Cisco FirePOWER Services could allow an unauthenticated, remote attacker to cause legitimate network traffic to be dropped, resulting in a denial of service DoS...

8.6CVSS0.00736EPSS
Exploits0References4
NVD
NVD
added 2024/10/23 5:15 p.m.12 views

CVE-2024-20330

A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause memory corruption, which could cause the Snort detection engine to restart...

8.6CVSS0.00666EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/10/23 5:9 p.m.11 views

CVE-2024-20342 Cisco Firepower Threat Defense Software Rate Filter Bypass Vulnerability

Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter. This vulnerability is due to an incorrect connection count comparison. An attacker...

5.8CVSS5.6AI score0.00511EPSS
Exploits0References1
AlpineLinux
AlpineLinux
added 2024/10/23 5:9 p.m.3 views

CVE-2024-20342

Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter. This vulnerability is due to an incorrect connection count comparison. An attacker...

8.6CVSS6.4AI score0.00511EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/10/23 5:8 p.m.22 views

CVE-2024-20330 Cisco Firepower Threat Defense Software for Cisco Firepower 2100 Series TCP UDP Snort 2 and Snort 2 Denial of Service Vulnerability

A vulnerability in the Snort 2 and Snort 3 TCP and UDP detection engine of Cisco Firepower Threat Defense FTD Software for Cisco Firepower 2100 Series Appliances could allow an unauthenticated, remote attacker to cause memory corruption, which could cause the Snort detection engine to restart...

8.6CVSS0.00666EPSS
Exploits0References3
CVE
CVE
added 2024/10/23 5:8 p.m.48 views

CVE-2024-20330

CVE-2024-20330 affects Cisco Firepower Threat Defense (FTD) Software on Cisco Firepower 2100 Series Appliances, impacting the Snort TCP/UDP detection engine. The vulnerability arises from improper memory management in the Snort detection engine, allowing unauthenticated remote attackers to trigge...

8.6CVSS8.6AI score0.00666EPSS
Exploits0References3Affected Software1
Cisco
Cisco
added 2024/10/23 4:0 p.m.33 views

Cisco Firepower Threat Defense Software Vulnerability Database with Snort Detection Engine Security Policy Bypass and Denial of Service Issue

An issue with a Cisco Vulnerability Database VDB release for Cisco Firepower Threat Defense FTD Software could cause the Snort detection engine to restart unexpectedly when inspecting traffic. While the Snort detection engine is restarting, traffic could bypass Snort inspection or be dropped,...

7.1AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/10/23 12:0 a.m.4 views

PT-2024-7507 · Cisco · Cisco Ftd +1

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD Software affected versions not specified Description: A logic error in the interaction between the TCP Intercept feature and the Snort 3 detection engine could allow an unauthenticated, remote attacker to...

5.8CVSS6.3AI score0.00391EPSS
Exploits0References7
Positive Technologies
Positive Technologies
added 2024/10/23 12:0 a.m.3 views

PT-2024-9127 · Cisco · Cisco Firepower Services +2

Name of the Vulnerable Software and Affected Versions: Cisco Firepower Threat Defense FTD Software affected versions not specified Cisco FirePOWER Services affected versions not specified Description: A vulnerability in the TCP/IP traffic handling function of the Snort Detection Engine could allo...

8.6CVSS8.3AI score0.00736EPSS
Exploits0References8
The Hacker News
The Hacker News
added 2024/07/24 8:32 a.m.44 views

CrowdStrike Explains Friday Incident Crashing Millions of Windows Devices

Cybersecurity firm CrowdStrike on Wednesday blamed an issue in its validation system for causing millions of Windows devices to crash as part of a widespread outage late last week. "On Friday, July 19, 2024 at 04:09 UTC, as part of regular operations, CrowdStrike released a content configuration...

7.3AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/02/09 12:0 a.m.67 views

Kibana 8.0.x < 8.12.1 (ESA-2024-01)

The version of Kibana installed on the remote host is prior to 8.12.1. It is, therefore, affected by a vulnerability as referenced in the ESA-2024-01 advisory. - An issue was discovered by Elastic, whereby the Detection Engine Search API does not respect Document- level security DLS or Field-leve...

6.5CVSS6.5AI score0.005EPSS
Exploits0References2
SUSE CVE
SUSE CVE
added 2024/02/08 3:21 a.m.7 views

SUSE CVE-2024-23446

An issue was discovered by Elastic, whereby the Detection Engine Search API does not respect Document-level security DLS or Field-level security FLS when querying the .alerts-security.alerts-spaceid indices. Users who are authorized to call this API may obtain unauthorized access to documents if...

6.5CVSS7AI score0.005EPSS
Exploits0References3
Rows per page
Query Builder