Known Vulnerabilities for products from Snort
Listed below are 20 of the newest known vulnerabilities associated with the vendor "Snort".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-20246 json | Multiple Cisco products are affected by a vulnerability in Snort access control policies that could allow an unauthenticated,... | 5.3 - MEDIUM | 2023-11-01 | 2024-02-05 |
| CVE-2023-20071 json | Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, re... | 5.8 - MEDIUM | 2023-11-01 | 2024-01-25 |
| CVE-2021-40116 json | Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker t... | 7.5 - HIGH | 2021-10-27 | 2023-11-07 |
| CVE-2021-40114 json | Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that cou... | 7.5 - HIGH | 2021-10-27 | 2023-11-07 |
| CVE-2021-1495 json | Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, re... | 5.3 - MEDIUM | 2021-04-29 | 2023-11-07 |
| CVE-2021-1236 json | Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthe... | 5.3 - MEDIUM | 2021-01-13 | 2023-05-22 |
| CVE-2021-1224 json | Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort dete... | 5.3 - MEDIUM | 2021-01-13 | 2023-11-07 |
| CVE-2021-1223 json | Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, re... | 7.5 - HIGH | 2021-01-13 | 2023-05-22 |
| CVE-2020-3299 json | Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, re... | 5.8 - MEDIUM | 2020-10-21 | 2023-05-22 |
| CVE-2016-1417 json | Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL ... | 8.8 - HIGH | 2017-01-23 | 2018-10-09 |
| CVE-2009-3641 json | Snort before 2.8.5.1, when the -v option is enabled, allows remote attackers to cause a denial of service (application crash)... | 4.3 - MEDIUM | 2009-10-28 | 2017-08-17 |
| CVE-2008-1804 json | preprocessors/spp_frag3.c in Sourcefire Snort before 2.8.1 does not properly identify packet fragments that have dissimilar T... | Not Provided | 2008-05-22 | 2026-04-23 |
| CVE-2007-1398 json | The frag3 preprocessor in Snort 2.6.1.1, 2.6.1.2, and 2.7.0 beta, when configured for inline use on Linux without the ip_conn... | Not Provided | 2007-03-10 | 2026-04-23 |
| CVE-2007-0251 json | Integer underflow in the DecodeGRE function in src/decode.c in Snort 2.6.1.2 allows remote attackers to trigger dereferencing... | Not Provided | 2007-01-16 | 2026-04-23 |
| CVE-2006-6931 json | Algorithmic complexity vulnerability in Snort before 2.6.1, during predicate evaluation in rule matching for certain rules, a... | Not Provided | 2007-01-16 | 2026-04-23 |
| CVE-2006-5276 json | Stack-based buffer overflow in the DCE/RPC preprocessor in Snort before 2.6.1.3, and 2.7 before beta 2; and Sourcefire Intrus... | Not Provided | 2007-02-20 | 2026-04-23 |
| CVE-2003-0033 json | Buffer overflow in the RPC preprocessor for Snort 1.8 and 1.9.x before 1.9.1 allows remote attackers to execute arbitrary cod... | Not Provided | 2003-03-07 | 2025-04-03 |
| CVE-2001-1558 json | Unknown vulnerability in IP defragmenter (frag2) in Snort before 1.8.3 allows attackers to cause a denial of service (crash). | Not Provided | 2001-12-31 | 2025-04-03 |
| CVE-2001-0669 json | Various Intrusion Detection Systems (IDS) including (1) Cisco Secure Intrusion Detection System, (2) Cisco Catalyst 6000 Intr... | Not Provided | 2001-10-30 | 2025-04-03 |
| CVE-2000-1226 json | Snort 1.6, when running in straight ASCII packet logging mode or IDS mode with straight decoded ASCII packet logging selected... | Not Provided | 2000-12-31 | 2025-04-03 |
Known software with vulnerabilities from Snort
| Type | Vendor | Product | Version |
|---|---|---|---|
| Application | Snort | Snort | - |