CVE-2023-20246

Name of the Vulnerable Software and Affected Versions Multiple Cisco products (affected versions not specified)

Description The issue is related to a logic error in Snort access control policies that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. This occurs when the access control policies are being populated. An attacker could exploit this by establishing a connection to an affected device, potentially allowing them to bypass configured access control rules. The vulnerability is also associated with authentication bypass via spoofing.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.