Firepower Threat Defense@7.1.0.0 Security Vulnerabilities and Issues — Firepower Threat Defense@7.1.0.0 CVE List

Lucene search

CiscoFirepower Threat Defense7.1.0.0

7 matches found

CVE•added 2022/11/15 9:15 p.m.•89 views

CVE-2022-20826

A vulnerability in the secure boot implementation of Cisco Secure Firewalls 3100 Series that are running Cisco Adaptive Security Appliance (ASA) Software or Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated attacker with physical access to the device to bypass the secure ...

6.8CVSS6.7AI score0.00021EPSS

CVE•added 2022/11/15 9:15 p.m.•75 views

CVE-2022-20924

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulne...

7.7CVSS6.4AI score0.00096EPSS

CVE•added 2022/11/15 9:15 p.m.•68 views

CVE-2022-20934

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper input validation for specific CLI commands...

6.7CVSS6.9AI score0.00036EPSS

CVE•added 2022/05/03 4:15 a.m.•61 views

CVE-2022-20751

A vulnerability in the Snort detection engine integration for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause unlimited memory consumption, which could lead to a denial of service (DoS) condition on an affected device. This vulnerability is due...

8.6CVSS8AI score0.00784EPSS

CVE•added 2022/11/15 9:15 p.m.•60 views

CVE-2022-20946

A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a memory handling...

8.6CVSS7.5AI score0.00156EPSS

CVE•added 2022/11/15 9:15 p.m.•59 views

CVE-2022-20940

A vulnerability in the TLS handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to gain access to sensitive information. This vulnerability is due to improper implementation of countermeasures against a Bleichenbacher attack on a device that uses ...

5.3CVSS5.5AI score0.00088EPSS

CVE•added 2022/11/15 9:15 p.m.•50 views

CVE-2022-20949

A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is not properly restr...

6.5CVSS5.5AI score0.00029EPSS