3 matches found
CVE-2024-20363
CVE-2024-20363 affects multiple Cisco products due to a vulnerability in the Snort 3 IPS rule engine caused by incorrect HTTP packet handling. An unauthenticated, remote attacker can exploit crafted HTTP traffic to bypass configured IPS rules, allowing uninspected traffic onto the network. Affect...
CVE-2021-40116
CVE-2021-40116 affects Cisco products using Snort3 when a rule with Block with Reset or Interactive Block with Reset is configured without proper constraints. A crafted IP packet can cause a DoS by dropping through traffic; Snort2 configurations are not affected. Connected sources confirm the vul...
CVE-2024-20342
CVE-2024-20342 : Multiple Cisco products with Snort rate-filtering can be bypassed due to an incorrect connection count comparison. An unauthenticated, remote attacker can send traffic at or above the configured rate to bypass the rate-limiting filter, potentially allowing unintended traffic into...