Vulnslist

find the latest Cisco vulnerabilities

Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability

cisco-sa-snort-app-bypass-cSBYCATq · Medium · Published · Updated

Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATq

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2021-1236
Cisco Bug IDsCSCvu21318, CSCvs85467
CVSS ScoreBase 4.0
Base 4.0 CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:L/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco UTD SNORT IPS Engine Software, Cisco Firepower Threat Defense Software 6.2.3, Cisco Firepower Threat Defense Software 6.2.3.1, Cisco Firepower Threat Defense Software 6.2.3.2, Cisco Firepower Threat Defense Software 6.2.3.3, Cisco Firepower Threat Defense Software 6.2.3.4, Cisco Firepower Threat Defense Software 6.2.3.5, Cisco Firepower Threat Defense Software 6.2.3.6, Cisco Firepower Threat Defense Software 6.2.3.7, Cisco Firepower Threat Defense Software 6.2.3.8, Cisco Firepower Threat Defense Software 6.2.3.10, Cisco Firepower Threat Defense Software 6.2.3.11, Cisco Firepower Threat Defense Software 6.2.3.9, Cisco Firepower Threat Defense Software 6.2.3.12, Cisco Firepower Threat Defense Software 6.2.3.13, Cisco Firepower Threat Defense Software 6.2.3.14, Cisco Firepower Threat Defense Software 6.2.3.15, Cisco Firepower Threat Defense Software 6.2.3.16, Cisco Firepower Threat Defense Software 6.4.0, Cisco Firepower Threat Defense Software 6.4.0.1, Cisco Firepower Threat Defense Software 6.4.0.3, Cisco Firepower Threat Defense Software 6.4.0.2, Cisco Firepower Threat Defense Software 6.4.0.4, Cisco Firepower Threat Defense Software 6.4.0.5, Cisco Firepower Threat Defense Software 6.4.0.6, Cisco Firepower Threat Defense Software 6.4.0.7, Cisco Firepower Threat Defense Software 6.4.0.8, Cisco Firepower Threat Defense Software 6.4.0.9, Cisco Firepower Threat Defense Software 6.4.0.10, Cisco Firepower Threat Defense Software 6.4.0.11, Cisco Secure Firewall Threat Defense (FTD) Software, Cisco Firepower 2100 Series, Cisco Firepower 1000 Series, Cisco 3000 Series Industrial Security Appliances (ISA), Cisco Firepower 9000 Series, Cisco Firepower 4100 Series, Cisco Secure Firewall Threat Defense Virtual

Related Products

Product CVE Evidence
Cisco UTD SNORT IPS Engine Software CVE-2021-1236 Cisco OpenVuln
Cisco Secure Firewall Threat Defense Virtual CVE-2021-1236 Cisco OpenVuln
Cisco Secure Firewall Threat Defense (FTD) Software CVE-2021-1236 Cisco OpenVuln
Cisco Firepower Threat Defense Software CVE-2021-1236 Cisco OpenVuln
Cisco Firepower 9000 Series CVE-2021-1236 Cisco OpenVuln
Cisco Firepower 4100 Series CVE-2021-1236 Cisco OpenVuln
Cisco Firepower 2100 Series CVE-2021-1236 Cisco OpenVuln
Cisco Firepower 1000 Series CVE-2021-1236 Cisco OpenVuln
Cisco 3000 Series Industrial Security Appliances (ISA) CVE-2021-1236 Cisco OpenVuln