280 matches found
Input validation
A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial of service DoS condition because the Snort process restarts unexpectedly. The vulnerability is due...
CVE-2017-12244
A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial of service DoS condition because the Snort process restarts unexpectedly. The vulnerability is due...
CVE-2017-12244
CVE-2017-12244 affects Cisco Firepower System Software 6.0+ where the detection engine’s IPv6 packet parsing allows an unauthenticated remote attacker to cause high CPU usage/DoS by sending crafted IPv6 extension header packets. Root cause is improper input validation in the IPv6 extension header...
CVE-2017-6766
Cisco Firepower System Software versions 5.4.0, 5.4.1, 6.0.0, 6.1.0, 6.2.0, 6.2.1, and 6.2.2 contain a vulnerability (CVE-2017-6766) in the SSL Decryption and Inspection feature that allows an unauthenticated, remote attacker to bypass SSL policy for decrypting and inspecting traffic. The issue a...
CVE-2017-6735
Cisco FireSIGHT System Software (FireSIGHT Management Center) is affected by CVE-2017-6735 due to improper handling of modified backup configuration files in the backup and restore functionality. Aauthenticated local attacker can execute arbitrary code on the targeted appliance with root privileg...
CVE-2017-6735
A vulnerability in the backup and restore functionality of Cisco FireSIGHT System Software could allow an authenticated, local attacker to execute arbitrary code on a targeted system. More Information: CSCvc91092. Known Affected Releases: 6.2.0 6.2.1...
Cisco FireSIGHT System Software Arbitrary Code Execution Vulnerability
Cisco FireSIGHT Management Center enables centralized management of network security and operational functions for Cisco ASA with FirePOWER Services and Cisco FirePOWER devices. A security vulnerability exists in the Cisco FireSIGHT System Software in the backup and restore functions, which arise...
CVE-2017-6674
A vulnerability in the feature-license management functionality of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass URL filters that have been configured for an affected device. More Information: CSCvb16413. Known Affected Releases: 6.0.1 6.1.0 6.2.0 6.2.1...
Cisco Firepower System Software Remote Security Bypass Vulnerability
Cisco Firepower System Software is a next-generation firewall product NGFW from Cisco. A security vulnerability exists in the feature-license management feature of Cisco Firepower System Software, which stems from a URL filter license that can be disabled. A remote attacker could exploit this...
CVE-2017-6649
CVE-2017-6649 concerns Cisco NX-OS System Software CLI on Cisco Nexus Series Switches. The vulnerability arises from insufficient input validation of command arguments in the CLI, allowing an authenticated, local attacker to inject crafted arguments and read or write arbitrary files outside the i...
Cisco Nexus 5000 Series Switches CLI Command Injection Vulnerability (cisco-sa-20170517-nss)
A vulnerability in the CLI of Cisco NX-OS System Software running on Cisco Nexus 5000 Series Switches could allow an authenticated, local attacker to perform a command injection attack. Copyright C 2017 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, a...
CVE-2017-6625
CVE-2017-6625 affects Cisco Firepower System Software (FTD 6.0.0–6.2.2) and ASA with FirePOWER Module when SSL policy is enabled. The root cause is improper SSL policy handling in the access control policy, allowing an authenticated, remote attacker to craft SSL packets that cause the system to s...
CVE-2016-6368
A vulnerability in the detection engine parsing of Pragmatic General Multicast PGM protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition due to the Snort process unexpectedly restarting. The vulnerability is...
CVE-2016-6368
A vulnerability in the detection engine parsing of Pragmatic General Multicast PGM protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition due to the Snort process unexpectedly restarting. The vulnerability is...
Cisco Firepower System Software Denial of Service Vulnerability (CNVD-2017-05516)
Cisco Firepower System Software is a next-generation firewall product from Cisco. A security vulnerability exists in Cisco Firepower System Software. A remote attacker could exploit the vulnerability to send a specially crafted HTTP request for a denial of service attack...
CVE-2017-3885
A vulnerability in the detection engine reassembly of Secure Sockets Layer SSL packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition because the Snort process consumes a high level of CPU resources. Affected Products...
CVE-2017-3887
A vulnerability in the detection engine that handles Secure Sockets Layer SSL packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service DoS condition because the Snort process unexpectedly restarts. This vulnerability affects Cisco...
CVE-2017-3885
CVE-2017-3885 is a vulnerability in the Cisco Firepower System Software detection engine reassembly of SSL packets that can be exploited by an unauthenticated, remote attacker to cause a DoS by driving the Snort process to high CPU usage. Affected releases include Cisco Firepower System Software ...
CVE-2017-3887
CVE-2017-3887 concerns Cisco Firepower System Software’s SSL packet handling in the detection engine when configured with an SSL Decrypt-Resign policy. An unauthenticated, remote attacker could trigger a DoS by causing the Snort process to restart, degrading or bypassing traffic inspection. Affec...
Cisco Firepower System Software Security Bypass Vulnerability (CNVD-2017-01166)
Cisco Firepower System Software is a next-generation firewall product NGFW from Cisco. A security vulnerability exists in Cisco Firepower System Software. A remote attacker can exploit this vulnerability by adding malicious text to the end of a URL string to bypass security restrictions and perfo...