Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2020-3299

Опубликовано: 21 окт. 2020
Источник: nvd
CVSS3: 5.8
CVSS3: 5.8
CVSS2: 5
EPSS Низкий

Описание

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
Версия от 6.0.0 (включая) до 6.3.0.1 (исключая)

Одно из

cpe:2.3:a:cisco:cloud_services_router_1000v:-:*:*:*:*:*:*:*
cpe:2.3:a:cisco:isrv:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-8p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1101-4p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1109-2p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1109-4p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1111x-8p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:4221_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:4331_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:4431_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:4461_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:isa_3000:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:meraki_mx:-:*:*:*:*:*:*:*
Конфигурация 2
cpe:2.3:a:snort:snort:*:*:*:*:*:*:*:*
Версия до 2.9.13.1 (исключая)

EPSS

Процентиль: 68%
0.00571
Низкий

5.8 Medium

CVSS3

5.8 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-693
NVD-CWE-Other

Связанные уязвимости

ubuntu логотип

CVE-2020-3299

CVSS3: 5.8
ubuntu
больше 5 лет назад

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.

debian логотип

CVE-2020-3299

CVSS3: 5.8
debian
больше 5 лет назад

Multiple Cisco products are affected by a vulnerability in the Snort d ...

github логотип

GHSA-j2v5-cw33-rvx6

CVSS3: 5.8
github
больше 3 лет назад

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.

fstec логотип

BDU:2020-05262

CVSS3: 5.8
fstec
больше 5 лет назад

Уязвимость системы обнаружения вторжений Snort микропрограммного обеспечения межсетевого экрана Cisco Firepower Threat Defense (FTD), программно-определяемой сети Cisco SD-WAN, межсетевой операционной системы Cisco IOS XE и микропрограммного обеспечения cетевых устройств Cisco Meraki, позволяющая нарушителю обойти механизм защиты и выполнить вредоносную нагрузку

EPSS

Процентиль: 68%
0.00571
Низкий

5.8 Medium

CVSS3

5.8 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-693
NVD-CWE-Other