3 matches found
Cisco Firepower Threat Defense Software Signature Verification Bypass (cisco-sa-sigbypass-FcvPPCeP)
According to its self-reported version, Cisco Firepower Threat Defense Software is affected by a signature verification bypass vulnerability due to improper verification of digital signatures for patch images. An authenticated, remote attacker can exploit this, by crafting an unsigned software...
CVE-2020-3308
A vulnerability in the Image Signature Verification feature of Cisco Firepower Threat Defense FTD Software could allow an authenticated, remote attacker with administrator-level credentials to install a malicious software patch on an affected device. The vulnerability is due to improper...
CVE-2020-3308
Cisco Firepower Threat Defense (FTD) Software is vulnerable in its Image Signature Verification feature. The root cause is improper verification of digital signatures for patch images, enabling an authenticated, remote attacker with administrator-level credentials to craft and load an unsigned pa...