CVE-2023-20267

A vulnerability in the IP geolocation rules of Snort 3 could allow an unauthenticated, remote attacker to potentially bypass IP address restrictions. This vulnerability exists because the configuration for IP geolocation rules is not parsed properly. An attacker could exploit this vulnerability by spoofing an IP address until they bypass the restriction. A successful exploit could allow the attacker to bypass location-based IP address restrictions.

Severity	MEDIUM
CVSS	4.0
CWE	CWE-284
KEV
Published	2 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco Secure Firewall Threat Defense Virtual	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Secure Firewall Threat Defense (FTD) Software	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Secure Firewall 3100 Series	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Firepower Threat Defense Software	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Firepower 9000 Series	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Firepower 4100 Series	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Firepower 2100 Series	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco Firepower 1000 Series	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco ASA 5500-X Series Firewalls	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn
Cisco 3000 Series Industrial Security Appliances (ISA)	cisco-sa-ftdsnort3sip-bypass-LMz2ThKn