CVE-2023-20246

Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a logic error that occurs when the access control policies are being populated. An attacker could exploit this vulnerability by establishing a connection to an affected device. A successful exploit could allow the attacker to bypass configured access control rules on the affected system.

Severity	MEDIUM
CVSS	5.8
CWE	CWE-290
KEV
Published	2 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco Umbrella Insights Virtual Appliance	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Umbrella	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Secure Firewall Threat Defense Virtual	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Secure Firewall Threat Defense (FTD) Software	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Secure Firewall 3100 Series	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Firepower Threat Defense Software	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Firepower 9000 Series	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Firepower 4100 Series	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Firepower 2100 Series	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco Firepower 1000 Series	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco ASA 5500-X Series Firewalls	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh
Cisco 3000 Series Industrial Security Appliances (ISA)	cisco-sa-ftd-snort3acp-bypass-3bdR2BEh