Lucene search
HistoryNov 18, 2015 - 3:59 p.m.
CVE-2015-6373
cve-2015-6373
csrf vulnerability
cisco
firepower extensible operating system
firepower 9000
authentication hijacking
bug id cscux10611
nvd
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.4%
Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux10611.
Affected configurations
Node
ciscofirepower_extensible_operating_systemMatch1.1\(1.160\)
Related
cisco
cisco
Cisco Firepower 9000 Cross-Site Request Forgery Vulnerability
2015-11-17 21:43:00
cvelist
cvelist
CVE-2015-6373
2015-11-18 15:00:00
prion
prion
Cross site request forgery (csrf)
2015-11-18 15:59:00
nvd
nvd
CVE-2015-6373
2015-11-18 15:59:03
6.8 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
7.5 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.4%
Related for CVE-2015-6373