Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System (IPS) rule engine that could allow an unauthenticated, remote attacker to bypass the configured rules on an affected system. This vulnerability is due to incorrect HTTP packet handling. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured IPS rules and allow uninspected traffic onto the network.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2024-05-22T16:52:53.274Z

Updated: 2024-08-01T21:59:42.321Z

Reserved: 2023-11-08T15:08:07.651Z

Link: CVE-2024-20363

cve-icon Vulnrichment

Updated: 2024-08-01T21:59:42.321Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2024-05-22T17:16:13.950

Modified: 2024-11-21T08:52:28.177

Link: CVE-2024-20363

cve-icon Redhat

No data.