Cisco Snort HTTP Detection Engine Policy Bypass Vulnerability (CVE-2021-1494/1495)

From this webpage screenshot, the following key vulnerability information can be obtained: 1. Vulnerability Description: - Vulnerability Name: Snort HTTP Detection Engine File Policy Bypass Vulnerabilities in Multiple Cisco Products. - Vulnerability ID: CISCO-SA-HTTP-FP-BP-KFDQCQHC. - CVE Numbers: CVE-2021-1494 and CVE-2021-1495. - CVSS Score: 5.8. 2. Affected Products: - All Snort-based open-source project versions. - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms. - Cisco 8300 Series Edge Platforms. - Cisco 8500L Series Edge Platforms. - Cisco Cloud Services Router 1000V Series. - Cisco Firepower Threat Defense (FTD) Software. - Cisco Integrated Services Virtual Router (ISRv). - Open-source Snort 2. 3. Affected Software Versions: - All Snort-based open-source project versions. - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms. - Cisco 8300 Series Edge Platforms. - Cisco 8500L Series Edge Platforms. - Cisco Cloud Services Router 1000V Series. - Cisco Firepower Threat Defense (FTD) Software. - Cisco Integrated Services Virtual Router (ISRv). - Open-source Snort 2. 4. Remediation Measures: - Install updated software versions to fix the vulnerabilities. - Use upgrade solutions provided by Cisco Technical Assistance Center (TAC) or contract maintenance providers. 5. Affected Product List: - Cisco Adaptive Security Appliance (ASA) Software. - Cisco Catalyst 8500 Series Edge Platforms. - Cisco Firepower Management Center (FMC) Software. - Cisco Meraki Security Appliances. - Open-source Snort 3. 6. Exploitation Mechanism: - These vulnerabilities result from errors in processing specific HTTP header parameters. - Attackers can exploit these vulnerabilities by sending crafted HTTP packets. 7. Affected Software Versions: - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms. - Cisco 8300 Series Edge Platforms. - Cisco 8500L Series Edge Platforms. - Cisco Cloud Services Router 1000V Series. - Cisco Firepower Threat Defense (FTD) Software. - Cisco Integrated Services Virtual Router (ISRv). - Open-source Snort 2. 8. Affected Software Versions: - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms. - Cisco 8300 Series Edge Platforms. - Cisco 8500L Series Edge Platforms. - Cisco Cloud Services Router 1000V Series. - Cisco Firepower Threat Defense (FTD) Software. - Cisco Integrated Services Virtual Router (ISRv). - Open-source Snort 2. 9. Affected Software Versions: - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms. - Cisco 8300 Series Edge Platforms. - Cisco 8500L Series Edge Platforms. - Cisco Cloud Services Router 1000V Series. - Cisco Firepower Threat Defense (FTD) Software. - Cisco Integrated Services Virtual Router (ISRv). - Open-source Snort 2. 10. Affected Software Versions: - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms. - Cisco 8300 Series Edge Platforms. - Cisco 8500L Series Edge Platforms. - Cisco Cloud Services Router 1000V Series. - Cisco Firepower Threat Defense (FTD) Software. - Cisco Integrated Services Virtual Router (ISRv). - Open-source Snort 2. 11. Affected Software Versions: - Cisco UTD Snort IPS Engine Software (used in Cisco IOS XE software and Cisco UTD engine). - Cisco 1000 Series Integrated Services Routers (ISR). - Cisco 3000 Series Industrial Security Appliances (ISA). - Cisco 4000 Series Integrated Services Routers (ISR). - Cisco 8000V Edge Software. - Cisco 8200 Series Edge Platforms

Goal Reached Thanks to every supporter — we hit 100%!

Cisco Snort HTTP Detection Engine Policy Bypass Vulnerability (CVE-2021-1494/1495)