Lucene search
Veracode Vulnerability DatabaseVERACODE:39664HistoryMar 11, 2023 - 10:15 p.m.
Authorization Bypass
2023-03-1122:15:52
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
snort
vulnerability
authorization
bypass
remote attacker
crafted packets
tfo packets
http payload
malicious payload
0.002 Low
EPSS
Percentile
57.3%
snort is vulnerable to Authorization Bypass. An unauthenticated, remote attacker is able to exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device, allowing them to bypass configured file policy for HTTP packets and deliver a malicious payload.
Related
prion
prion
Design/Logic Flaw
2021-01-13 22:15:00
cve
cve
CVE-2021-1224
2021-01-13 22:15:20
debiancve
debiancve
CVE-2021-1224
2021-01-13 22:15:20
nvd
nvd
CVE-2021-1224
2021-01-13 22:15:20
cvelist
cvelist
cisco
cisco
Multiple Cisco Products Snort TCP Fast Open File Policy Bypass Vulnerability
2021-01-13 16:00:00
ubuntucve
ubuntucve
CVE-2021-1224
2021-01-13 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1971
2021-07-02 18:08:02
debian
debian
[SECURITY] [DSA 5354-1] snort security update
2023-02-18 16:38:22
[SECURITY] [DLA 3317-1] snort security update
2023-02-10 23:23:58
openvas
openvas
Mageia: Security Advisory (MGASA-2023-0117)
2023-03-31 00:00:00
Debian: Security Advisory (DSA-5354-1)
2023-02-19 00:00:00
Debian: Security Advisory (DLA-3317-1)
2023-02-11 00:00:00
nessus
nessus
Debian DLA-3317-1 : snort - LTS security update
2023-02-11 00:00:00
Debian DSA-5354-1 : snort - security update
2023-02-18 00:00:00
mageia
mageia
Updated snort packages fix security vulnerability
2023-03-31 03:13:46
osv
osv
snort - security update
2023-02-18 00:00:00
snort - security update
2023-02-11 00:00:00