Firepower Threat Defense@7.1.0.1 Security Vulnerabilities and Issues — Firepower Threat Defense@7.1.0.1 CVE List

Lucene search

CiscoFirepower Threat Defense7.1.0.1

9 matches found

CVE•added 2022/08/10 5:15 p.m.•98 views

CVE-2022-20713

A vulnerability in the VPN web client services component of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to conduct browser-based attacks against users of an affected device. This vulnerability is ...

6.1CVSS6.4AI score0.04442EPSS

CVE•added 2022/11/15 9:15 p.m.•88 views

CVE-2022-20947

A vulnerability in dynamic access policies (DAP) functionality of Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. Thi...

8.6CVSS7.5AI score0.0012EPSS

CVE•added 2022/11/15 9:15 p.m.•75 views

CVE-2022-20924

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulne...

7.7CVSS6.4AI score0.00096EPSS

CVE•added 2022/11/15 9:15 p.m.•68 views

CVE-2022-20934

A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying operating system as root. This vulnerability is due to improper input validation for specific CLI commands...

6.7CVSS6.9AI score0.00036EPSS

CVE•added 2022/11/15 9:15 p.m.•65 views

CVE-2022-20928

A vulnerability in the authentication and authorization flows for VPN connections in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to establish a connection as a different user. This vulnerability is due ...

5.8CVSS5.8AI score0.00031EPSS

CVE•added 2022/11/15 9:15 p.m.•64 views

CVE-2022-20922

Multiple vulnerabilities in the Server Message Block Version 2 (SMB2) processor of the Snort detection engine on multiple Cisco products could allow an unauthenticated, remote attacker to bypass the configured policies or cause a denial of service (DoS) condition on an affected device. These vulner...

6.5CVSS6.8AI score0.00026EPSS

CVE•added 2022/11/15 9:15 p.m.•60 views

CVE-2022-20946

A vulnerability in the generic routing encapsulation (GRE) tunnel decapsulation feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to a memory handling...

8.6CVSS7.5AI score0.00156EPSS

CVE•added 2022/11/15 9:15 p.m.•59 views

CVE-2022-20940

A vulnerability in the TLS handler of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to gain access to sensitive information. This vulnerability is due to improper implementation of countermeasures against a Bleichenbacher attack on a device that uses ...

5.3CVSS5.5AI score0.00088EPSS

CVE•added 2022/11/15 9:15 p.m.•50 views

CVE-2022-20949

A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is not properly restr...

6.5CVSS5.5AI score0.00029EPSS