CVE-2020-3299
5.8
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Exploitability: 3.9 / Impact: 1.4
Source: NVD
Description
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured File Policy for HTTP. The vulnerability is due to incorrect detection of modified HTTP packets used in chunked responses. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured File Policy for HTTP packets and deliver a malicious payload.
Affected (2)
Products: Cisco: Firepower Threat Defense · Snort: Snort
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| From 6.0.0 to 6.3.0.1 |
| Running on/with | Platform Versions |
|---|---|
Cisco 1100 4p | All versions |
Cisco 1100 8p | All versions |
Cisco 1101 4p | All versions |
Cisco 1109 2p | All versions |
Cisco 1109 4p | All versions |
Cisco 1111x 8p | All versions |
Cisco 4221 Integrated Services Router | All versions |
Cisco 4331 Integrated Services Router | All versions |
Cisco 4431 Integrated Services Router | All versions |
Cisco 4461 Integrated Services Router | All versions |
Cisco Cloud Services Router 1000v | All versions |
Cisco Isa 3000 | All versions |
Cisco Isrv | All versions |
Cisco Meraki Mx | All versions |
References (6)
Source: psirt@cisco.com
Source: psirt@cisco.com
Vendor Advisory
Source: psirt@cisco.com
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Timeline
No history available yet.