Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
CiscoFirepower Extensible Operating System1.1(1.160)

8 matches found

CVE
CVEadded 2015/11/19 2:59 a.m.48 views

CVE-2015-6369

The USB driver in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows physically proximate attackers to cause a denial of service via a crafted USB device that triggers invalid USB commands, aka Bug ID CSCux10531.

4.9CVSS6.6AI score0.00097EPSS
CVE
CVEadded 2015/11/19 2:59 a.m.42 views

CVE-2015-6374

The web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices does not properly restrict use of IFRAME elements, which makes it easier for remote attackers to conduct clickjacking attacks and unspecified other attacks via a crafted web site, aka Bug ID CSCux1...

4.3CVSS6.9AI score0.00217EPSS
CVE
CVEadded 2015/11/19 2:59 a.m.40 views

CVE-2015-6370

The Management I/O (MIO) component in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows local users to execute arbitrary OS commands as root via crafted CLI input, aka Bug ID CSCux10578.

7.2CVSS7.5AI score0.00317EPSS
CVE
CVEadded 2015/11/18 3:59 p.m.38 views

CVE-2015-6373

Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux10611.

6.8CVSS7.5AI score0.00116EPSS
CVE
CVEadded 2015/11/19 2:59 a.m.36 views

CVE-2015-6371

Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote authenticated users to read arbitrary files via crafted parameters to unspecified scripts, aka Bug ID CSCux10621.

4CVSS6.6AI score0.00176EPSS
CVE
CVEadded 2015/11/18 3:59 p.m.36 views

CVE-2015-6372

Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCux10614.

4.3CVSS5.8AI score0.00296EPSS
CVE
CVEadded 2015/11/19 2:59 a.m.34 views

CVE-2015-6368

Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to read files via a crafted HTTP request, aka Bug ID CSCux10608.

5CVSS6.8AI score0.00084EPSS
CVE
CVEadded 2015/11/24 4:59 a.m.32 views

CVE-2015-6380

An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote authenticated users to execute arbitrary OS commands via crafted parameters, aka Bug ID CSCux10622.

6.5CVSS7.5AI score0.00447EPSS