PT-2021-3083 · Cisco · Cisco Isa+5

Santosh Krishnamurthy

·

Published

2021-04-28

·

Updated

2024-11-18

·

CVE-2021-1494

CVSS v3.1

5.8

Medium

VectorAV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) versions (affected versions not specified) Cisco Catalyst versions (affected versions not specified) Cisco ISR versions (affected versions not specified) Cisco ISA versions (affected versions not specified) Cisco ISRv versions (affected versions not specified)
Description The vulnerability is related to the Snort detection engine and is due to incorrect handling of specific HTTP header parameters. This could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP and deliver a malicious payload. An attacker could exploit this vulnerability by sending crafted HTTP packets through an affected device.
Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Protection Mechanism Failure

Weakness Enumeration

CWE-693

Related Identifiers

BDU:2021-02695
CVE-2021-1494
DLA-3317-1
DSA-5354-1
MGASA-2023-0117

Affected Products

Cisco Catalyst
Cisco Ftd
Cisco Isa
Cisco Isr
Cisco Isrv
Snort