Lucene search
Veracode Vulnerability DatabaseVERACODE:39648HistoryMar 11, 2023 - 12:25 a.m.
Authorization Bypass
2023-03-1100:25:34
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
8
authorization bypass
remote attacker
crafted http packets
configured file policy
malicious payload
vulnerability
0.001 Low
EPSS
Percentile
49.1%
snort is vulnerable to authorization bypasses. An unauthenticated, remote attacker is able to exploit this vulnerability by sending crafted HTTP packets through an affected device, allowing them to bypass a configured file policy for HTTP packets and deliver a malicious payload.
Related
prion
prion
Design/Logic Flaw
2021-04-29 18:15:00
cve
cve
CVE-2021-1495
2021-04-29 18:15:09
nvd
nvd
CVE-2021-1495
2021-04-29 18:15:09
debiancve
debiancve
CVE-2021-1495
2021-04-29 18:15:09
cvelist
cvelist
ubuntucve
ubuntucve
CVE-2021-1495
2021-04-29 00:00:00
nessus
nessus
Cisco Firepower Threat Defence Snort HTTP Detection Engine File Policy Bypass (cisco-sa-http-fp-bp-KfDdcQhc)
2021-05-28 00:00:00
Multiple Cisco Products Snort HTTP Detection Engine File Policy Bypass (cisco-sa-http-fp-bp-KfDdcQhc)
2021-05-28 00:00:00
Debian DSA-5354-1 : snort - security update
2023-02-18 00:00:00
cisco
cisco
openvas
openvas
Debian: Security Advisory (DSA-5354-1)
2023-02-19 00:00:00
Debian: Security Advisory (DLA-3317-1)
2023-02-11 00:00:00
Mageia: Security Advisory (MGASA-2023-0117)
2023-03-31 00:00:00
osv
osv
snort - security update
2023-02-18 00:00:00
snort - security update
2023-02-11 00:00:00
mageia
mageia
Updated snort packages fix security vulnerability
2023-03-31 03:13:46
debian
debian
[SECURITY] [DSA 5354-1] snort security update
2023-02-18 16:38:22
[SECURITY] [DLA 3317-1] snort security update
2023-02-10 23:23:58