2 matches found
CVE-2021-1369 Cisco Firepower Device Manager On-Box Software XML External Entity Vulnerability
A vulnerability in the REST API of Cisco Firepower Device Manager FDM On-Box Software could allow an authenticated, remote attacker to gain read and write access to information that is stored on an affected device. This vulnerability is due to the improper handling of XML External Entity XXE...
CVE-2021-1369
The CVE-2021-1369 entry concerns Cisco Firepower Device Manager (FDM) On-Box Software. The vulnerability arises from improper handling of XML External Entity (XXE) references when parsing certain XML files in the REST API, enabling an authenticated, remote attacker to read and write information s...