Firepower Extensible Operating System@2.3 Security Vulnerabilities and Issues — Firepower Extensible Operating System@2.3 CVE List

Lucene search

CiscoFirepower Extensible Operating System2.3

9 matches found

CVE•added 2020/02/26 5:15 p.m.•89 views

CVE-2020-3166

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to read or write arbitrary files on the underlying operating system (OS). The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including crafted argum...

6.7CVSS5.1AI score0.00171EPSS

CVE•added 2019/03/07 8:0 p.m.•66 views

CVE-2019-1598

Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vul...

8.6CVSS8.1AI score0.02767EPSS

CVE•added 2020/02/26 5:15 p.m.•64 views

CVE-2020-3169

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with a privilege level of root on an affected device. The vulnerability is due to insufficient validation of arguments passed to a sp...

7.2CVSS6.8AI score0.00146EPSS

CVE•added 2019/05/15 9:29 p.m.•60 views

CVE-2019-1795

A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to...

7.2CVSS6.7AI score0.00107EPSS

CVE•added 2019/10/02 7:15 p.m.•56 views

CVE-2019-12700

A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) conditi...

7.7CVSS6.4AI score0.01422EPSS

CVE•added 2019/11/05 8:15 p.m.•56 views

CVE-2019-1734

A vulnerability in the implementation of a CLI diagnostic command in Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to view sensitive system files that should be restricted. The attacker could use this information to conduct additional reconnaissance attac...

5.5CVSS5.4AI score0.002EPSS

CVE•added 2019/10/02 7:15 p.m.•51 views

CVE-2019-12699

Multiple vulnerabilities in the CLI of Cisco FXOS Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute commands on the underlying operating system (OS) with root privileges. These vulnerabilities are due to insufficient input validation....

8.8CVSS8AI score0.00174EPSS

CVE•added 2019/03/07 8:29 p.m.•51 views

CVE-2019-1600

A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to access sensitive information that is stored in the file system of an affected system. The vulnerability is due to improper implementation of file system per...

6.7CVSS4.6AI score0.00131EPSS

CVE•added 2017/10/19 8:29 a.m.•47 views

CVE-2017-3883

A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability occurs because AAA proce...

8.6CVSS8.5AI score0.02619EPSS