CVE-2021-1236
Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network.Enginsight
Vendor | Product | Version |
---|---|---|
cisco | ios_xe | 𝑥 < 17.4.1 |
cisco | firepower_threat_defense | 𝑥 < 6.5.0.5 |
cisco | secure_firewall_management_center | 2.9.14.0 |
cisco | secure_firewall_management_center | 2.9.14.14 |
cisco | secure_firewall_management_center | 2.9.15 |
cisco | secure_firewall_management_center | 2.9.16 |
cisco | secure_firewall_management_center | 2.9.17 |
snort | snort | 𝑥 < 2.9.14 |
Ubuntu Releases
Common Weakness Enumeration