Snort

Snort

18 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.3

CVE-2023-20246

  • EPSS 0.07%
  • Published 01.11.2023 18:15:09
  • Last modified 21.11.2024 07:40:59

Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This vulnerability is due to a logic error that...

7.8

CVE-2021-40114

  • EPSS 1.36%
  • Published 27.10.2021 19:15:08
  • Last modified 26.11.2024 16:09:02

Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerab...

5.3

CVE-2021-1495

  • EPSS 0.16%
  • Published 29.04.2021 18:15:09
  • Last modified 21.11.2024 05:44:28

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP he...

5.3

CVE-2021-1236

  • EPSS 0.29%
  • Published 13.01.2021 22:15:20
  • Last modified 26.11.2024 16:09:02

Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the ...

5.3

CVE-2021-1224

  • EPSS 0.37%
  • Published 13.01.2021 22:15:20
  • Last modified 26.11.2024 16:09:02

Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerabil...

7.5

CVE-2021-1223

  • EPSS 0.42%
  • Published 13.01.2021 22:15:20
  • Last modified 26.11.2024 16:09:02

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range he...

5.8

CVE-2020-3299

  • EPSS 0.57%
  • Published 21.10.2020 19:15:15
  • Last modified 21.11.2024 05:30:45

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP p...

8.8

CVE-2016-1417

Exploit
  • EPSS 4.26%
  • Published 23.01.2017 21:59:01
  • Last modified 20.04.2025 01:37:25

Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that ...

4.3

CVE-2009-3641

Exploit
  • EPSS 33.24%
  • Published 28.10.2009 14:30:00
  • Last modified 09.04.2025 00:30:58

Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash) via a crafted IPv6 packet that uses the (1) TCP or (2) ICMP protocol.

6.8

CVE-2008-1804

  • EPSS 0.27%
  • Published 22.05.2008 13:09:00
  • Last modified 09.04.2025 00:30:58

preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar TTL values, which allows remote attackers to bypass detection rules by using a different TTL for each fragment.