CVE-2021-40114

CVE-2021-40114

Name

CVE-2021-40114

Description

Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource management while the Snort detection engine is processing ICMP packets. An attacker could exploit this vulnerability by sending a series of ICMP packets through an affected device. A successful exploit could allow the attacker to exhaust resources on the affected device, causing the device to reload.

NVD Severity

medium

Other trackers

CVE, NVD, CERT, CVE Details, CIRCL, Arch Linux, Debian, Red Hat, Ubuntu, Gentoo, SUSE (Bugzilla), SUSE (CVE), Mageia

Mailing lists

oss-security, full-disclosure, bugtraq

Exploits

Exploit DB, Metasploit

Forges

GitHub (code, issues), Aports (code, issues)

Type	URI
CISCO	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU

Type

URI

CISCO

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-dos-s2R7W9UU

Match rules

CPE URI	Source package	Min version	Max version
`cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:::::::*`	firepower_management_center	== None	== 2.9.14.0
`cpe:2.3:a:cisco:firepower_management_center:2.9.15:::::::*`	firepower_management_center	== None	== 2.9.15
`cpe:2.3:a:cisco:firepower_management_center:2.9.16:::::::*`	firepower_management_center	== None	== 2.9.16
`cpe:2.3:a:cisco:firepower_management_center:2.9.17:::::::*`	firepower_management_center	== None	== 2.9.17
`cpe:2.3:a:cisco:firepower_threat_defense::::::::`	firepower_threat_defense	>= None	< 6.4.0.12
`cpe:2.3:a:cisco:firepower_threat_defense::::::::`	firepower_threat_defense	>= 6.5.0	< 6.6.3
`cpe:2.3:a:cisco:firepower_threat_defense::::::::`	firepower_threat_defense	>= 6.7.0	< 6.7.0.2
`cpe:2.3:a:cisco:unified_threat_defense::::::::`	unified_threat_defense	>= 16.12	< 16.12.6
`cpe:2.3:a:cisco:unified_threat_defense::::::::`	unified_threat_defense	>= 17.3	< 17.3.4a
`cpe:2.3:a:cisco:unified_threat_defense::::::::`	unified_threat_defense	>= 17.4	< 17.4.2

CPE URI

Source package

Min version

Max version

cpe:2.3:a:cisco:firepower_management_center:2.9.14.0:*:*:*:*:*:*:*

firepower_management_center

== None

== 2.9.14.0

cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*

firepower_management_center

== None

== 2.9.15

cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*

firepower_management_center

== None

== 2.9.16

cpe:2.3:a:cisco:firepower_management_center:2.9.17:*:*:*:*:*:*:*

firepower_management_center

== None

== 2.9.17

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

firepower_threat_defense

>= None

< 6.4.0.12

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

firepower_threat_defense

>= 6.5.0

< 6.6.3

cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*

firepower_threat_defense

>= 6.7.0

< 6.7.0.2

cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*

unified_threat_defense

>= 16.12

< 16.12.6

cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*

unified_threat_defense

>= 17.3

< 17.3.4a

cpe:2.3:a:cisco:unified_threat_defense:*:*:*:*:*:*:*:*

unified_threat_defense

>= 17.4

< 17.4.2

Source package	Branch	Version	Maintainer	Status
snort	3.15-main	2.9.18-r0	Natanael Copa <ncopa@alpinelinux.org>	fixed

Source package

Branch

Version

Maintainer

Status

snort

3.15-main

2.9.18-r0

Natanael Copa <ncopa@alpinelinux.org>

fixed

References

Match rules

Vulnerable and fixed packages