Multiple Cisco products are affected by a vulnerability in the Snort Intrusion Prevention System (IPS) rule engine that could allow an unauthenticated, remote attacker to bypass the configured rules on an affected system. This vulnerability is due to incorrect HTTP packet handling. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device. A successful exploit could allow the attacker to bypass configured IPS rules and allow uninspected traffic onto the network.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2024-05-22T16:52:53.274Z
Updated: 2024-08-01T21:59:42.321Z
Reserved: 2023-11-08T15:08:07.651Z
Link: CVE-2024-20363
Vulnrichment
Updated: 2024-08-01T21:59:42.321Z
NVD
Status : Awaiting Analysis
Published: 2024-05-22T17:16:13.950
Modified: 2024-11-21T08:52:28.177
Link: CVE-2024-20363
Redhat
No data.