Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
snort snort vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2017-12300
A vulnerability in the SNORT detection engine of Cisco Firepower System Software could allow an unauthenticated, remote malicious user to bypass a file policy that is configured to block the Server Message Block Version 2 (SMB2) protocol. The vulnerability is due to the incorrect...
Cisco Firepower Management Center 2.9.10
Cisco Firepower Management Center 2.9.11
Cisco Firepower Management Center 2.9.9
Cisco Firepower Management Center 2.9.12
445
VMScore
CVE-2017-12244
A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote malicious user to cause high CPU utilization or to cause a denial of service (DoS) condition because the Snort process restarts unexpectedly....
Cisco Firepower Management Center 6.0.0.0
Cisco Firepower Management Center 6.0.0.1
Cisco Firepower Management Center 6.0.1
Cisco Firepower Management Center 6.0.1.3
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.1.0.6
Cisco Firepower Management Center 6.2.0.2
Cisco Firepower Management Center 6.2.1
Cisco Firepower Management Center 6.2.2
Cisco Firepower Management Center 6.1.0.3
Cisco Firepower Management Center 6.2.0
445
VMScore
CVE-2017-12245
A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote malicious user to cause depletion of system memory, aka a Firepower Detection Engine SSL Decryption Memory Consumption Denial of Service vulnerabilit...
Cisco Firepower Management Center 6.1.0.6
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.0.2
Cisco Firepower Management Center 6.2.1
Cisco Firepower Management Center 6.0.1.3
Cisco Firepower Management Center 6.1.0.3
Cisco Firepower Management Center 6.2.2
Cisco Firepower Management Center 6.0.1
Cisco Firepower Management Center 6.1.0
445
VMScore
CVE-2017-9804
In Apache Struts 2.3.7 up to and including 2.3.33 and 2.5 up to and including 2.5.12, if an application allows entering a URL in a form field and built-in URLValidator is used, it is possible to prepare a special URL which will be used to overload server process when performing v...
Apache Struts 2.5.12
Apache Struts 2.3.7
Apache Struts 2.3.14.1
Apache Struts 2.3.14.2
Apache Struts 2.3.16.1
Apache Struts 2.3.16.2
Apache Struts 2.3.21
Apache Struts 2.3.22
Apache Struts 2.3.28.1
Apache Struts 2.3.29
Apache Struts 2.5
Apache Struts 2.5.7
Apache Struts 2.5.8
Apache Struts 2.3.10
Apache Struts 2.3.11
Apache Struts 2.3.12
Apache Struts 2.3.15.1
Apache Struts 2.3.15.2
Apache Struts 2.3.19
Apache Struts 2.3.20
Apache Struts 2.3.25
Apache Struts 2.3.26
1 Github repository
1 Article
445
VMScore
CVE-2017-6657
Cisco Sourcefire Snort 3.0 before build 233 mishandles Ether Type Validation. Since valid ether type and IP protocol numbers do not overlap, Snort++ stores all protocol decoders in a single array. That makes it possible to craft packets that have IP protocol numbers in the ether ...
Cisco Snort\\+\\+ -
445
VMScore
CVE-2017-6658
Cisco Sourcefire Snort 3.0 before build 233 has a Buffer Overread related to use of a decoder array. The size was off by one making it possible to read past the end of the array with an ether type of 0xFFFF. Increasing the array size solves this problem.
Cisco Sourcefire Snort 3.0
445
VMScore
CVE-2016-6368
A vulnerability in the detection engine parsing of Pragmatic General Multicast (PGM) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition due to the Snort process unexpectedly resta...
Cisco Firepower Management Center 6.0.0.0
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.0.0.1
Cisco Firepower Management Center 6.0.1
445
VMScore
CVE-2016-1463
Cisco FireSIGHT System Software 5.3.0, 5.3.1, 5.4.0, 6.0, and 6.0.1 allows remote malicious users to bypass Snort rules via crafted parameters in the header of an HTTP packet, aka Bug ID CSCuz20737.
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 6.0.0
445
VMScore
CVE-2016-1345
Cisco FireSIGHT System Software 5.4.0 up to and including 6.0.1 and ASA with FirePOWER Services 5.4.0 up to and including 6.0.0.1 allow remote malicious users to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726.
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.4.0
Cisco Asa With Firepower Services 5.4.0.1
Cisco Asa With Firepower Services 5.4.0
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 5.4.1.3
Cisco Asa With Firepower Services 6.0.0.1
Cisco Asa With Firepower Services 6.0.0
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 6.0.0
Cisco Asa With Firepower Services 5.4.0.3
Cisco Asa With Firepower Services 5.4.0.2
Cisco Asa With Firepower Services 5.4.0.6
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.4.0.1
Cisco Asa With Firepower Services 5.4.0.5
1 Article
445
VMScore
CVE-2015-6427
Cisco FireSIGHT Management Center allows remote malicious users to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.3.1.7
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »