CVE-2017-12277

🗓️ 02 Nov 2017 16:00:00Reported by ciscoType

A vulnerability in Cisco Firepower 4100 and 9300 appliances allows injection of arbitrary commands with root privilege

Reporter	Title	Published	Views	Family All 9
BDU FSTEC	The vulnerability of the Smart Licensing Manager operating system of FX-OS allows a perpetrator to execute arbitrary commands with root privileges.	15 Feb 201800:00	–	bdu_fstec
Cisco	Cisco Firepower 4100 Series NGFW and Firepower 9300 Security Appliance Smart Licensing Command Injection Vulnerability	1 Nov 201716:00	–	cisco
CNVD	Command Injection Vulnerability in Multiple Cisco Products	2 Nov 201700:00	–	cnvd
CVE	CVE-2017-12277	2 Nov 201716:00	–	cve
EUVD	EUVD-2017-3850	7 Oct 202500:30	–	euvd
NVD	CVE-2017-12277	2 Nov 201716:29	–	nvd
OSV	CVE-2017-12277	2 Nov 201716:29	–	osv
Prion	Input validation	2 Nov 201716:29	–	prion
Positive Technologies	PT-2017-3406 · Cisco · Cisco Firepower Security	1 Nov 201700:00	–	ptsecurity

[
  {
    "product": "Cisco Firepower 4100 Series NGFW and Firepower 9300 Security Appliance",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco Firepower 4100 Series NGFW and Firepower 9300 Security Appliance"
      }
    ]
  }
]

Source	Link
securityfocus	www.securityfocus.com/bid/101661
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-fpwr

03 Nov 2017 18:57Current

8.8High risk

Vulners AI Score8.8

EPSS0.00905

CWE-20