Unrated severityNVD Advisory· Published Jan 13, 2021· Updated Nov 12, 2024
Multiple Cisco Products Snort Application Detection Engine Policy Bypass Vulnerability
CVE-2021-1236
Description
Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: n/a
Patches
Vulnerability mechanics
References
3- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-app-bypass-cSBYCATqmitrevendor-advisory
- www.debian.org/security/2023/dsa-5354mitrevendor-advisory
- lists.debian.org/debian-lts-announce/2023/02/msg00011.htmlmitremailing-list
News mentions
0No linked articles in our index yet.