Lucene search

[email protected]NVD:CVE-2015-6373

HistoryNov 18, 2015 - 3:59 p.m.

CVE-2015-6373

2015-11-1815:59:03

CWE-352

[email protected]

web.nvd.nist.gov

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.2%

JSON

Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux10611.

Affected configurations

NVD

Node

ciscofirepower_extensible_operating_systemMatch1.1\(1.160\)

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151117-firepower3

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

7.3 High

AI Score

Confidence

Low

0.001 Low

EPSS

Percentile

44.2%

JSON

Related for NVD:CVE-2015-6373

cisco1 cve1 cvelist1 prion1