The remote Debian 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5354 advisory.

    Multiple security vulnerabilities were discovered in snort, a flexible Network Intrusion Detection System,     which could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition or     bypass filtering technology on an affected device and ex-filtrate data from a compromised host. For the     stable distribution (bullseye), these problems have been fixed in version 2.9.20-0+deb11u1. We recommend     that you upgrade your snort packages. For the detailed security status of snort please refer to its     security tracker page at: https://security-tracker.debian.org/tracker/snort

Tenable has extracted the preceding description block directly from the Debian security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

Detections

Analytics

Debian DSA-5354-1 : snort - security update

high Nessus Plugin ID 171628

Version 1.1

Version 1.0

Version 1.1 Jan 24, 2025, 11:52 PM CVSS metrics ("Cvssv4 score" set to 0.0) CVSSv2 severity (based on None, severity decreased from "High" to "Low") Plugin metadata Plugin Feed: 202501242352
Version 1.0 Feb 19, 2023, 5:49 AM New Plugin Feed: 202302190549