Secure Firewall Management Center@2.9.16 Security Vulnerabilities and Issues — Secure Firewall Management Center@2.9.16 CVE List

Lucene search

CiscoSecure Firewall Management Center2.9.16

9 matches found

CVE•added 2021/10/27 7:15 p.m.•93 views

CVE-2021-40114

Multiple Cisco products are affected by a vulnerability in the way the Snort detection engine processes ICMP traffic that could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper memory resource manageme...

7.8CVSS6.9AI score0.01769EPSS

CVE•added 2021/01/13 10:15 p.m.•85 views

CVE-2021-1224

Multiple Cisco products are affected by a vulnerability with TCP Fast Open (TFO) when used in conjunction with the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect detection of the HTTP pay...

5.8CVSS5.7AI score0.00486EPSS

CVE•added 2021/01/13 10:15 p.m.•79 views

CVE-2021-1236

Multiple Cisco products are affected by a vulnerability in the Snort application detection engine that could allow an unauthenticated, remote attacker to bypass the configured policies on an affected system. The vulnerability is due to a flaw in the detection algorithm. An attacker could exploit th...

5.3CVSS5AI score0.00385EPSS

CVE•added 2019/11/05 8:15 p.m.•77 views

CVE-2019-1981

A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to insuf...

5.8CVSS5.7AI score0.00405EPSS

CVE•added 2021/01/13 10:15 p.m.•77 views

CVE-2021-1223

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass a configured file policy for HTTP. The vulnerability is due to incorrect handling of an HTTP range header. An attacker could exploit this vulnerabilit...

7.5CVSS6.5AI score0.00561EPSS

CVE•added 2020/05/06 5:15 p.m.•73 views

CVE-2020-3315

Multiple Cisco products are affected by a vulnerability in the Snort detection engine that could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system. The vulnerability is due to errors in how the Snort detection engine handles specific HTTP respons...

5.8CVSS5.5AI score0.00215EPSS

CVE•added 2019/11/05 8:15 p.m.•71 views

CVE-2019-1978

A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to impro...

5.8CVSS5.6AI score0.2366EPSS

CVE•added 2021/10/27 7:15 p.m.•49 views

CVE-2021-34754

Multiple vulnerabilities in the payload inspection for Ethernet Industrial Protocol (ENIP) traffic for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured rules for ENIP traffic. These vulnerabilities are due to incomplete processing du...

7.5CVSS6.8AI score0.00184EPSS

CVE•added 2019/11/05 8:15 p.m.•42 views

CVE-2019-1980

A vulnerability in the protocol detection component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to impr...

5.8CVSS5.4AI score0.00289EPSS