Cisco

Secure Firewall Management Center

186 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4

CVE-2017-3847

  • EPSS 0.19%
  • Veröffentlicht 22.02.2017 02:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface. More Information: CSCvc72741. Known Affected R...

5.8

CVE-2017-3809

  • EPSS 0.3%
  • Veröffentlicht 03.02.2017 07:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in the Policy deployment module of the Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote attacker to prevent deployment of a complete and accurate rule base. More Information: CSCvb95281. Known Affected Re...

5.8

CVE-2017-3814

  • EPSS 0.24%
  • Veröffentlicht 03.02.2017 07:59:00
  • Zuletzt bearbeitet 20.04.2025 01:37:25

A vulnerability in Cisco Firepower System Software could allow an unauthenticated, remote attacker to maliciously bypass the appliance's ability to block certain web content, aka a URL Bypass. More Information: CSCvb93980. Known Affected Releases: 5....

7.5

CVE-2016-9193

  • EPSS 0.38%
  • Veröffentlicht 14.12.2016 00:59:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

A vulnerability in the malicious file detection and blocking features of Cisco Firepower Management Center and Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass malware detection mechanisms on an affected syste...

7.5

CVE-2016-6439

  • EPSS 0.15%
  • Veröffentlicht 27.10.2016 21:59:11
  • Zuletzt bearbeitet 12.04.2025 10:46:40

A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Software before 6.0.1 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly res...

6.5

CVE-2016-6435

  • EPSS 55.03%
  • Veröffentlicht 06.10.2016 10:59:16
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The web console in Cisco Firepower Management Center 6.0.1 allows remote authenticated users to read arbitrary files via crafted parameters, aka Bug ID CSCva30376.

7.8

CVE-2016-6434

  • EPSS 0.39%
  • Veröffentlicht 06.10.2016 10:59:15
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370.

9

CVE-2016-6433

  • EPSS 69.66%
  • Veröffentlicht 06.10.2016 10:59:14
  • Zuletzt bearbeitet 12.04.2025 10:46:40

The Threat Management Console in Cisco Firepower Management Center 5.2.0 through 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872.

7.5

CVE-2016-6419

  • EPSS 0.54%
  • Veröffentlicht 05.10.2016 10:59:19
  • Zuletzt bearbeitet 12.04.2025 10:46:40

SQL injection vulnerability in Cisco Firepower Management Center 4.10.3 through 5.4.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCur25485.

6.1

CVE-2016-6365

  • EPSS 0.4%
  • Veröffentlicht 23.08.2016 02:11:04
  • Zuletzt bearbeitet 12.04.2025 10:46:40

Cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center 4.10.3, 5.2.0, 5.3.0, 5.3.0.2, 5.3.1, and 5.4.0 allows remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCur25508 and CSCur2...