exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 5

CVE-2021-1495

почти 5 лет назад

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.

CVSS3: 5.8

EPSS: Низкий

CVE-2021-1495

почти 5 лет назад

CVSS3: 5.8

EPSS: Низкий

CVE-2021-1495

почти 5 лет назад

Multiple Cisco products are affected by a vulnerability in the Snort d ...

CVSS3: 5.8

EPSS: Низкий

GHSA-qp86-f9fh-jg8p

больше 3 лет назад

CVSS3: 5.3

EPSS: Низкий

BDU:2021-02334

почти 5 лет назад

Уязвимость системы обнаружения вторжений Snort микропрограммного обеспечения межсетевого экрана Cisco Firepower Threat Defense (FTD), сетевых устройств Cisco Catalyst, маршрутизаторов ISR и ISA, виртуального маршрутизатора с интегрированными сервисами ISRv, позволяющая нарушителю оказать воздействие на целостность защищаемой информации

CVSS3: 5.8

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
CVE-2021-1495 Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.	CVSS3: 5.8	0% Низкий	почти 5 лет назад
CVE-2021-1495 Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.	CVSS3: 5.8	0% Низкий	почти 5 лет назад
CVE-2021-1495 Multiple Cisco products are affected by a vulnerability in the Snort d ...	CVSS3: 5.8	0% Низкий	почти 5 лет назад
GHSA-qp86-f9fh-jg8p Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.	CVSS3: 5.3	0% Низкий	больше 3 лет назад
BDU:2021-02334 Уязвимость системы обнаружения вторжений Snort микропрограммного обеспечения межсетевого экрана Cisco Firepower Threat Defense (FTD), сетевых устройств Cisco Catalyst, маршрутизаторов ISR и ISA, виртуального маршрутизатора с интегрированными сервисами ISRv, позволяющая нарушителю оказать воздействие на целостность защищаемой информации	CVSS3: 5.8	0% Низкий	почти 5 лет назад

Уязвимостей на страницу