CVE-2024-20508 | Cisco UTD SNORT IPS Engine Software up to 17.15.1a HTTP heap-based overflow (cisco-sa-utd-snort3-dos-bypas-b4OUEwxD)

Posted by Angelo Barbosa | Sep 25, 2024 | CVE

A vulnerability was found in Cisco UTD SNORT IPS Engine Software and classified as critical. This issue affects some unknown processing of the component HTTP Handler. The manipulation leads to heap-based buffer overflow.

The identification of this vulnerability is CVE-2024-20508. The attack may be initiated remotely. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2024-20508 | Cisco UTD SNORT IPS Engine Software up to 17.15.1a HTTP heap-based overflow (cisco-sa-utd-snort3-dos-bypas-b4OUEwxD)

Related Posts

CVE-2024-39747 | IBM Sterling Connect Direct Web Services 6.0/6.1/6.2/6.3 default credentials (XFDB-297314)

CVE-2024-39132 | DumpTS 0.1.0-nightly /src/DumpTS.cpp VerifyCommandLine null pointer dereference

CVE-2024-7163 | SeaCMS 12.9 index.php color/vid/url cross site scripting (Issue 28)

CVE-2024-2406 | Gacjie Server up to 1.0 Upload.php index file unrestricted upload