Cisco FTD Snort 3 检测引擎绕过漏洞 (CVE-2024-20407)

关键信息 1. 漏洞描述: - 漏洞名称: Cisco Firepower Threat Defense Software TCP Snort 3 Detection Engine Bypass Vulnerability - 漏洞ID: cisco-sa-snort-bypass-PTry37fX - CVE编号: CVE-2024-20407 - CWE编号: CWE-399 - CVSS评分: Base 5.8 2. 漏洞影响: - 受影响产品: Cisco FTD Software and Cisco FirePOWER Services - 受影响版本: 2024年10月23日发布的版本 - 受影响配置: 配置有最大胚胎连接的系统，使用Snort 3检测引擎。 3. 漏洞利用: - 利用方式: 通过发送特定的流量模式，未经授权的远程攻击者可以绕过配置的策略。 - 影响: 允许未经授权的流量进入受保护的网络。 4. 修复措施: - 已发布修复: Cisco已发布软件更新来解决此漏洞。 - 工作绕过: 提供了工作绕过措施，包括禁用特定的CLI命令。 5. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 6. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 7. 工作绕过措施: - 禁用特定CLI命令: 8. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 9. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 10. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 11. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 12. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 13. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 14. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 15. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 16. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 17. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 18. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 19. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 20. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 21. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 22. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 23. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 24. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 25. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 26. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 27. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 28. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 29. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 30. 受影响产品列表: - 确认受影响的产品: - Cisco Adaptive Security Appliance (ASA) Software - Cisco Secure Firewall Management Center (FMC) Software - Open Source Snort 2 - Open Source Snort 3 31. 受影响产品列表: - 确认不受影响的产品: - Cisco Adaptive Security Applia

目标达成感谢每一位支持者 — 我们达成了 100% 目标！

Cisco FTD Snort 3 检测引擎绕过漏洞 (CVE-2024-20407)

同源更多文章

目标达成 感谢每一位支持者 — 我们达成了 100% 目标！

Cisco FTD Snort 3 检测引擎绕过漏洞 (CVE-2024-20407)

同源更多文章

目标达成感谢每一位支持者 — 我们达成了 100% 目标！