{ "affected": [ { "database_specific": { "unresolved_ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "7.0.6.2" } ] }, { "events": [ { "introduced": "7.2.0" }, { "fixed": "7.2.6" } ] }, { "events": [ { "introduced": "7.4.0" }, { "fixed": "7.4.2" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "7.1.0" } ] }, { "events": [ { "introduced": "0" }, { "last_affected": "7.3.0" } ] } ] }, "ranges": [ { "database_specific": { "versions": [ { "introduced": "3.0.0.0" }, { "fixed": "3.1.74.0" } ] }, "events": [ { "introduced": "0" }, { "fixed": "7acc98e290fa2906737dc707d46b128070dbba93" } ], "repo": "https://github.com/snort3/snort3", "type": "GIT" } ] } ], "details": "Multiple Cisco products are affected by a vulnerability in the rate filtering feature of the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured rate limiting filter.\u0026nbsp;\r\n\r\nThis vulnerability is due to an incorrect connection count comparison. An attacker could exploit this vulnerability by sending traffic through an affected device at a rate that exceeds a configured rate filter. A successful exploit could allow the attacker to successfully bypass the rate filter. This could allow unintended traffic to enter the network protected by the affected device.", "id": "CVE-2024-20342", "modified": "2026-04-01T23:09:46.328864454Z", "published": "2024-10-23T17:15:18.703Z", "references": [ { "type": "ADVISORY", "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-snort-rf-bypass-OY8f3pnM" } ], "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:N", "type": "CVSS_V3" } ] }