Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
threat detection engine vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2022-20950
A vulnerability in the interaction of SIP and Snort 3 for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the Snort 3 detection engine to restart. This vulnerability is due to a lack of error-checking when SIP bidirecti...
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.2.0
5.3
CVSSv3
CVE-2021-1495
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of specific HTTP header parameters. An atta...
Cisco Firepower Threat Defense
Cisco Ios Xe
Snort Snort
5.3
CVSSv3
CVE-2021-1224
Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass a configured file policy for HTTP. The vulnerability is due to incorrect ...
Cisco Firepower Management Center 2.9.14.0
Cisco Firepower Management Center 2.9.15
Cisco Firepower Management Center 2.9.16
Cisco Firepower Threat Defense
Cisco Firepower Management Center 2.9.17
Cisco Firepower Management Center 2.9.18
Cisco Firepower Management Center 3.0.1
Cisco Ios Xe
Snort Snort
Cisco Meraki Mx64 Firmware -
Cisco Meraki Mx64w Firmware -
Cisco Meraki Mx67 Firmware -
Cisco Meraki Mx67c Firmware -
Cisco Meraki Mx67w Firmware -
Cisco Meraki Mx68 Firmware -
Cisco Meraki Mx68cw Firmware -
Cisco Meraki Mx68w Firmware -
Cisco Meraki Mx100 Firmware -
Cisco Meraki Mx84 Firmware -
Cisco Meraki Mx250 Firmware -
Cisco Meraki Mx450 Firmware -
1 Github repository
5.3
CVSSv3
CVE-2021-1236
Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote malicious user to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An ...
Cisco Ios Xe
Cisco Firepower Management Center 2.9.14.0
Cisco Firepower Management Center 2.9.15
Cisco Firepower Management Center 2.9.16
Cisco Firepower Management Center 2.9.17
Cisco Firepower Management Center 2.9.14.14
Cisco Firepower Threat Defense
Snort Snort
5.3
CVSSv3
CVE-2020-1999
A vulnerability exists in the Palo Alto Network PAN-OS signature-based threat detection engine that allows an malicious user to communicate with devices in the network in a way that is not analyzed for threats by sending data through specifically crafted TCP packets. This techniq...
Paloaltonetworks Pan-os
5.3
CVSSv3
CVE-2020-3315
Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote malicious user to bypass the configured file policies on an affected system. The vulnerability is due to errors in how the Snort detection engine hand...
Cisco Firepower Management Center 2.9.14.4
Cisco Firepower Management Center 2.9.15
Cisco Firepower Management Center 2.9.16
Cisco Firepower Threat Defense
Cisco Ios 15.2\\(7\\)e
Cisco Ios 16.11.2
Cisco Ios 17.3.1
1 Article
5.3
CVSSv3
CVE-2018-0138
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote malicious user to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists beca...
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.2.3
4
CVSSv3
CVE-2023-20070
A vulnerability in the TLS 1.3 implementation of the Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause the Snort 3 detection engine to unexpectedly restart. This vulnerability is due to a logic error in how memory allocat...
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.2.0
4
CVSSv3
CVE-2023-20177
A vulnerability in the SSL file policy implementation of Cisco Firepower Threat Defense (FTD) Software that occurs when the SSL/TLS connection is configured with a URL Category and the Snort 3 detection engine could allow an unauthenticated, remote malicious user to cause the Sno...
Cisco Firepower Threat Defense 7.1.0
Cisco Firepower Threat Defense 7.0.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.0.1
Cisco Firepower Threat Defense 7.0.0.1
Cisco Firepower Threat Defense 7.0.1.1
Cisco Firepower Threat Defense 7.0.2
Cisco Firepower Threat Defense 7.0.2.1
Cisco Firepower Threat Defense 7.0.3
Cisco Firepower Threat Defense 7.0.4
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
Cisco Firepower Threat Defense 7.2.1
Cisco Firepower Threat Defense 7.2.2
Cisco Firepower Threat Defense 7.2.3
Cisco Firepower Threat Defense 7.3.1.1
Cisco Firepower Threat Defense 7.3.1
Cisco Firepower Threat Defense 7.3.0
Cisco Firepower Threat Defense 7.1.0.3
Cisco Firepower Threat Defense 7.0.5
NA
CVE-2023-49275
Wazuh is a free and open source platform used for threat prevention, detection, and response. A NULL pointer dereference was detected during fuzzing of the analysis engine, allowing malicious clients to DoS the analysis engine. The bug occurs when `analysisd` receives a syscollec...
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »