Unrated severityNVD Advisory· Published Nov 1, 2023· Updated Aug 2, 2024
CVE-2023-20071
CVE-2023-20071
Description
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a flaw in the FTP module of the Snort detection engine. An attacker could exploit this vulnerability by sending crafted FTP traffic through an affected device. A successful exploit could allow the attacker to bypass FTP inspection and deliver a malicious payload.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
5- Range: 3.0.4
- Range: 6.2.3
- Range: N/A
- Cisco/Cisco UTD SNORT IPS Engine Softwarev5Range: 16.12.1a
Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.