Firepower Extensible Operating System@2.4 Security Vulnerabilities and Issues — Firepower Extensible Operating System@2.4 CVE List

Lucene search

CiscoFirepower Extensible Operating System2.4

9 matches found

CVE•added 2022/02/23 6:15 p.m.•134 views

CVE-2022-20625

A vulnerability in the Cisco Discovery Protocol service of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause the service to restart, resulting in a denial of service (DoS) condition. This vulnerability is due to improper handling of Cisco Discov...

6.1CVSS5AI score0.02487EPSS

CVE•added 2020/02/26 5:15 p.m.•89 views

CVE-2020-3166

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to read or write arbitrary files on the underlying operating system (OS). The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by including crafted argum...

6.7CVSS5.1AI score0.00171EPSS

CVE•added 2020/02/26 5:15 p.m.•64 views

CVE-2020-3169

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with a privilege level of root on an affected device. The vulnerability is due to insufficient validation of arguments passed to a sp...

7.2CVSS6.8AI score0.00146EPSS

CVE•added 2019/05/16 5:29 p.m.•61 views

CVE-2019-1780

A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with administrator credentials to execute arbitrary commands on the underlying operating system of an affected device with elevated privileges. The vulnerability is due to insuffi...

7.2CVSS5.7AI score0.0006EPSS

CVE•added 2019/05/15 9:29 p.m.•60 views

CVE-2019-1795

A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to...

7.2CVSS6.7AI score0.00107EPSS

CVE•added 2020/10/21 7:15 p.m.•57 views

CVE-2020-3457

A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges. The vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerabilit...

7.2CVSS6.6AI score0.00151EPSS

CVE•added 2019/10/02 7:15 p.m.•56 views

CVE-2019-12700

A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) conditi...

7.7CVSS6.4AI score0.01422EPSS

CVE•added 2019/11/05 8:15 p.m.•56 views

CVE-2019-1734

A vulnerability in the implementation of a CLI diagnostic command in Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to view sensitive system files that should be restricted. The attacker could use this information to conduct additional reconnaissance attac...

5.5CVSS5.4AI score0.002EPSS

CVE•added 2019/10/02 7:15 p.m.•51 views

CVE-2019-12699

Multiple vulnerabilities in the CLI of Cisco FXOS Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute commands on the underlying operating system (OS) with root privileges. These vulnerabilities are due to insufficient input validation....

8.8CVSS8AI score0.00174EPSS