CVE-2021-1236

Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit this vulnerability by sending crafted packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured policies and deliver a malicious payload to the protected network.

Published: Jan 13, 2021
Updated: Apr 14, 2023
CVE: CVE-2021-1236
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 5.3
AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

CWE-670

Affected Software
References

Software	From	Fixed in
cisco / ios_xe	-	17.4.1
cisco / firepower_threat_defense	-	6.5.0.5
snort / snort	-	2.9.14
cisco / secure_firewall_management_center	2.9.14.0	2.9.14.0.x
cisco / secure_firewall_management_center	2.9.15	2.9.15.x
cisco / secure_firewall_management_center	2.9.16	2.9.16.x
cisco / secure_firewall_management_center	2.9.17	2.9.17.x
cisco / secure_firewall_management_center	2.9.14.14	2.9.14.14.x

Vulnerability Database

289,599

CVE-2021-1236