Firepower Threat Defense@6.2.0 Security Vulnerabilities and Issues — Firepower Threat Defense@6.2.0 CVE List

Lucene search

CiscoFirepower Threat Defense6.2.0

7 matches found

CVE•added 2018/01/29 8:29 p.m.•325 views

CVE-2018-0101

A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (ASA) Software could allow an unauthenticated, remote attacker to cause a reload of the affected system or to remotely execute code. The vulnerability is due to an attempt to double free a r...

10CVSS9.6AI score0.90932EPSS

CVE•added 2018/10/05 2:29 p.m.•74 views

CVE-2018-15383

A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a temporary denial of service (D...

7.8CVSS7.6AI score0.00941EPSS

CVE•added 2018/10/05 2:29 p.m.•73 views

CVE-2018-15399

A vulnerability in the TCP syslog module of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to exhaust the 1550-byte buffers on an affected device, resulting in a denial of service (DoS) condition. Th...

7.1CVSS6.7AI score0.00453EPSS

CVE•added 2018/10/05 2:29 p.m.•62 views

CVE-2018-15398

A vulnerability in the per-user-override feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass an access control list (ACL) that is configured for an interface of an affected device. Th...

4.3CVSS4.4AI score0.00398EPSS

CVE•added 2018/05/17 3:29 a.m.•52 views

CVE-2018-0297

A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due to the incorrect handling of TCP SSL packets...

5.8CVSS5.7AI score0.00167EPSS

CVE•added 2018/10/05 2:29 p.m.•51 views

CVE-2018-0453

A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense (FTD) sensors could allow an authenticated, local attacker to execute specific CLI commands with root privileges on the Cisco Firepower Management Center (F...

8.2CVSS8.2AI score0.00134EPSS

CVE•added 2018/02/08 7:29 a.m.•41 views

CVE-2018-0138

A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass file policies that are configured to block files transmitted to an affected device via the BitTorrent protocol. The vulnerability exists because the affected software...

5.3CVSS5.3AI score0.00227EPSS