High

DATE	CVE	VULNERABILITY TITLE	RISK
2021-10-27	CVE-2021-40114	Memory Leak vulnerability in multiple products Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. network low complexity cisco snort CWE-401	7.5
2021-10-27	CVE-2021-40116	Multiple Cisco products are affected by a vulnerability in Snort rules that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.The vulnerability is due to improper handling of the Block with Reset or Interactive Block with Reset actions if a rule is configured without proper constraints. network low complexity cisco snort	7.5
2021-01-13	CVE-2021-1223	Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. network low complexity cisco snort	7.5
2017-01-23	CVE-2016-1417	Untrusted Search Path vulnerability in Snort 2.9.7.0 Untrusted search path vulnerability in Snort 2.9.7.0-WIN32 allows remote attackers to execute arbitrary code and conduct DLL hijacking attacks via a Trojan horse tcapi.dll that is located in the same folder on a remote file share as a pcap file that is being processed. network low complexity snort CWE-426	8.8