2 matches found
CVE-2021-1448
Cisco Firepower Threat Defense Software is affected by a command-injection vulnerability in the CLI that, in multi-instance mode, could allow an authenticated local attacker to run arbitrary commands with root privileges due to insufficient validation of user-supplied command arguments. The issue...
CVE-2021-1448 Cisco Firepower Threat Defense Software Command Injection Vulnerability
A vulnerability in the CLI of Cisco Firepower Threat Defense FTD Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges on the underlying operating system of an affected device that is running in multi-instance mode. This vulnerability is due to...