5.8
CVE-2021-1495
- EPSS 0.16%
- Published 29.04.2021 18:15:09
- Last modified 21.11.2024 05:44:28
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Firepower Threat Defense Version < 6.4.0.12
Cisco ≫ Firepower Threat Defense Version >= 6.5.0 < 6.6.4
Cisco ≫ Firepower Threat Defense Version >= 6.7.0 < 6.7.0.2
Cisco ≫ Ios Xe Version >= 16.12 < 16.12.5
Cisco ≫ 1100-4g/6g Integrated Services Router Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Snort ≫ Snort Version < 2.9.17.1
Cisco ≫ 1100-4g/6g Integrated Services Router Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Cisco ≫ Ios Xe Version >= 17.1 < 17.3.3
Cisco ≫ 1100-4g/6g Integrated Services Router Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Cisco ≫ Ios Xe Version >= 17.4 < 17.4.1
Cisco ≫ 1100-4g/6g Integrated Services Router Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Cisco ≫ 1101 Integrated Services Router Version-
Cisco ≫ 1109 Integrated Services Router Version-
Cisco ≫ 1111x Integrated Services Router Version-
Cisco ≫ 111x Integrated Services Router Version-
Cisco ≫ 1120 Integrated Services Router Version-
Cisco ≫ 1160 Integrated Services Router Version-
Cisco ≫ 3000 Integrated Services Router Version-
Cisco ≫ 4221 Integrated Services Router Version-
Cisco ≫ 4331 Integrated Services Router Version-
Cisco ≫ 4431 Integrated Services Router Version-
Cisco ≫ 4461 Integrated Services Router Version-
Cisco ≫ C8200-1n-4t Version-
Cisco ≫ C8200l-1n-4t Version-
Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
Cisco ≫ Catalyst 8300-1n1s-6t Version-
Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
Cisco ≫ Catalyst 8300-2n2s-6t Version-
Cisco ≫ Catalyst 8500l Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 0.16% | 0.382 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 5.3 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:P/A:N
|
| psirt@cisco.com | 5.8 | 3.9 | 1.4 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
|
CWE-755 Improper Handling of Exceptional Conditions
The product does not handle or incorrectly handles an exceptional condition.