5 matches found
CVE-2022-20685
CVE-2022-20685 is a DoS vulnerability in the Snort Modbus preprocessor caused by an integer overflow when processing Modbus traffic. An unauthenticated, remote attacker could craft traffic to cause the Snort process to hang and halt traffic inspection. Cisco has released software updates addressi...
CVE-2021-44228
CVE-2021-44228 (Log4Shell) affects Apache Log4j2 2.0-beta9 through 2.15.0 (excluding some security releases) and is specific to log4j-core. The vulnerability arises from JNDI features used in configuration, log messages, and parameters, which can be exploited when an attacker can control log mess...
CVE-2023-20071
Cisco CVE-2023-20071 affects the Snort detection engine’s FTP inspection module across multiple Cisco products (notably FTD/ASA family). An unauthenticated, network-accessible attacker can craft FTP traffic to bypass FTP inspection and potentially deliver a payload, per Cisco’s security advisory ...
CVE-2022-20922
The CVE-2022-20922 entry concerns multiple vulnerabilities in the SMB2 processor of the Snort detection engine on Cisco products (Snort 3 configured). Affected component: Snort SMB2 processing; root cause: improper management of system resources while handling SMB2 traffic. Impact: unauthenticate...
CVE-2022-20943
CVE-2022-20943 pertains to Cisco Snort SMB2 processing. The SMB2 processor in Snort 3 (on affected Cisco products) is vulnerable to resource-management issues when handling SMB2 traffic, enabling unauthenticated remote attackers to bypass policies or cause DoS by sending high rates of SMB2 packet...