Vulnerability Details : CVE-2021-1224


CVE Name: CVE-2021-1224: Bypass Something vulnerability on Cisco Firepower Management Center, Cisco Firepower Threat Defense, Cisco Ios Xe, Cisco Isr 4221, Cisco Isr 4331, Cisco Csr 1000V, Cisco Isr 4321, Cisco Isr 4351, Cisco Isa 3000, Cisco Isr 1111X 8P, Cisco Isr 1100 8P, Cisco Isr 1100 4P, Cisco Isr 1101 4P, Cisco Isr 1109 4P, Cisco Isr 1109 2P, Cisco Isr 4431, Cisco Isr 4461, Cisco Isr 4451 X, Snort Snort, Cisco Meraki Mx64 Firmware, Cisco Meraki Mx64, Cisco Meraki Mx64W Firmware, Cisco Meraki Mx64W, Cisco Meraki Mx67 Firmware, Cisco Meraki Mx67, Cisco Meraki Mx67C Firmware, Cisco Meraki Mx67C, Cisco Meraki Mx67W Firmware, Cisco Meraki Mx67W, Cisco Meraki Mx68 Firmware, Cisco Meraki Mx68, Cisco Meraki Mx68Cw Firmware, Cisco Meraki Mx68Cw, Cisco Meraki Mx68W Firmware, Cisco Meraki Mx68W, Cisco Meraki Mx100 Firmware, Cisco Meraki Mx100, Cisco Meraki Mx84 Firmware, Cisco Meraki Mx84, Cisco Meraki Mx250 Firmware, Cisco Meraki Mx250, Cisco Meraki Mx450 Firmware, Cisco Meraki Mx450
Description: Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP payload if it is contained at least partially within the TFO connection handshake. An attacker could exploit this vulnerability by sending crafted TFO packets with an HTTP payload through an affected device. A successful exploit could allow the attacker to bypass configured file policy for HTTP packets and deliver a malicious payload.
Publish date: 2021-01-13T22:15Z
Last Update: 2022-08-05T19:30Z

CVSS Scores & Vulnerability Types


CVSS Score
Confidentiality ImpactNONE
Integrity ImpactLOW
Availability ImpactNONE
Actack VectorNETWORK
Actack ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
ScopeUNCHANGED
Vulnerability Type(s)Bypass Something
CWE IDN/I

Detail of Verions Affected


# Product Type Vendor Product Version
1 Application Cisco Firepower Management Center 2.9.14.0
2 Application Cisco Firepower Management Center 2.9.15
3 Application Cisco Firepower Management Center 2.9.16
4 Application Cisco Firepower Threat Defense *
5 Application Cisco Firepower Management Center 2.9.17
6 Application Cisco Firepower Management Center 2.9.18
7 Application Cisco Firepower Management Center 3.0.1
8 Operating System Cisco Ios Xe *
9 Hardware Cisco Isr 4221
10 Hardware Cisco Isr 4331
11 Hardware Cisco Csr 1000V
12 Hardware Cisco Isr 4321
13 Hardware Cisco Isr 4351
14 Hardware Cisco Isa 3000
15 Hardware Cisco Isr 1111X 8P
16 Hardware Cisco Isr 1100 8P
17 Hardware Cisco Isr 1100 4P
18 Hardware Cisco Isr 1101 4P
19 Hardware Cisco Isr 1109 4P
20 Hardware Cisco Isr 1109 2P
21 Hardware Cisco Isr 4431
22 Hardware Cisco Isr 4461
23 Hardware Cisco Isr 4451 X
24 Application Snort Snort *
25 Operating System Cisco Meraki Mx64 Firmware
26 Hardware Cisco Meraki Mx64
27 Operating System Cisco Meraki Mx64W Firmware
28 Hardware Cisco Meraki Mx64W
29 Operating System Cisco Meraki Mx67 Firmware
30 Hardware Cisco Meraki Mx67
31 Operating System Cisco Meraki Mx67C Firmware
32 Hardware Cisco Meraki Mx67C
33 Operating System Cisco Meraki Mx67W Firmware
34 Hardware Cisco Meraki Mx67W
35 Operating System Cisco Meraki Mx68 Firmware
36 Hardware Cisco Meraki Mx68
37 Operating System Cisco Meraki Mx68Cw Firmware
38 Hardware Cisco Meraki Mx68Cw
39 Operating System Cisco Meraki Mx68W Firmware
40 Hardware Cisco Meraki Mx68W
41 Operating System Cisco Meraki Mx100 Firmware
42 Hardware Cisco Meraki Mx100
43 Operating System Cisco Meraki Mx84 Firmware
44 Hardware Cisco Meraki Mx84
45 Operating System Cisco Meraki Mx250 Firmware
46 Hardware Cisco Meraki Mx250
47 Operating System Cisco Meraki Mx450 Firmware
48 Hardware Cisco Meraki Mx450