Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2021-1495

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass a configured file policy for HTTP packets and deliver a malicious payload.

Published

2021-04-29T18:15:09.430

Last Modified

2024-11-21T05:44:28.830

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 5.8 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: PARTIAL
Availability Impact: NONE

Exploitability Score

10.0

Impact Score

2.9

Weaknesses

Type: Primary
CWE-755

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	cisco	firepower_threat_defense	< 6.4.0.12	Yes
Application	cisco	firepower_threat_defense	< 6.6.4	Yes
Application	cisco	firepower_threat_defense	< 6.7.0.2	Yes
Application	cisco	ios_xe	< 16.12.5	Yes
Application	snort	snort	< 2.9.17.1	Yes
Operating System	cisco	ios_xe	< 17.3.3	Yes
Operating System	cisco	ios_xe	< 17.4.1	Yes
Hardware	cisco	1100-4g\/6g_integrated_services_router	-	No
Hardware	cisco	1101_integrated_services_router	-	No
Hardware	cisco	1109_integrated_services_router	-	No
Hardware	cisco	1111x_integrated_services_router	-	No
Hardware	cisco	111x_integrated_services_router	-	No
Hardware	cisco	1120_integrated_services_router	-	No
Hardware	cisco	1160_integrated_services_router	-	No
Hardware	cisco	3000_integrated_services_router	-	No
Hardware	cisco	4221_integrated_services_router	-	No
Hardware	cisco	4331_integrated_services_router	-	No
Hardware	cisco	4431_integrated_services_router	-	No
Hardware	cisco	4461_integrated_services_router	-	No
Hardware	cisco	c8200-1n-4t	-	No
Hardware	cisco	c8200l-1n-4t	-	No
Hardware	cisco	catalyst_8300-1n1s-4t2x	-	No
Hardware	cisco	catalyst_8300-1n1s-6t	-	No
Hardware	cisco	catalyst_8300-2n2s-4t2x	-	No
Hardware	cisco	catalyst_8300-2n2s-6t	-	No
Hardware	cisco	catalyst_8500l	-	No

References

https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc Vendor Advisory ([email protected])
https://www.debian.org/security/2023/dsa-5354 ([email protected])
https://lists.debian.org/debian-lts-announce/2023/02/msg00011.html (af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-http-fp-bp-KfDdcQhc Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.debian.org/security/2023/dsa-5354 (af854a3a-2127-422b-91ae-364da2661108)