Firesight System Software@5.4.0.4 Security Vulnerabilities and Issues — Firesight System Software@5.4.0.4 CVE List

Lucene search

CiscoFiresight System Software5.4.0.4

3 matches found

CVE•added 2015/10/31 4:59 a.m.•51 views

CVE-2015-6353

Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center (MC) 5.3.1.5 and 5.4.x through 5.4.1.3 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuu28922.

3.5CVSS5.5AI score0.00283EPSS

CVE•added 2015/12/18 11:59 a.m.•46 views

CVE-2015-6427

Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.

5CVSS6.9AI score0.00397EPSS

CVE•added 2015/10/25 2:59 a.m.•44 views

CVE-2015-6335

The policy implementation in Cisco FireSIGHT Management Center 5.3.1.7, 5.4.0.4, and 6.0.0 for VMware allows remote authenticated administrators to bypass intended policy restrictions and execute Linux commands as root via unspecified vectors, aka Bug ID CSCuw12839.

9CVSS7AI score0.00342EPSS