Secure Firewall Management Center@6.0.0 Security Vulnerabilities and Issues — Secure Firewall Management Center@6.0.0 CVE List

Lucene search

CiscoSecure Firewall Management Center6.0.0

17 matches found

CVE•added 2017/10/05 7:29 a.m.•63 views

CVE-2017-12244

A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial of service (DoS) condition because the Snort process restarts unexpectedly. The vulnerability is due...

8.6CVSS8.5AI score0.00274EPSS

CVE•added 2018/07/16 5:29 p.m.•58 views

CVE-2018-0385

A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability is due...

7.5CVSS7.6AI score0.00579EPSS

CVE•added 2018/04/19 8:29 p.m.•53 views

CVE-2018-0233

A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the detection engine to consume excessive system memory on an affected device, which could cause a de...

8.6CVSS8.3AI score0.00484EPSS

CVE•added 2016/10/27 9:59 p.m.•52 views

CVE-2016-6439

A vulnerability in the detection engine reassembly of HTTP packets for Cisco Firepower System Software before 6.0.1 could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper han...

7.5CVSS7.6AI score0.0022EPSS

CVE•added 2016/12/14 12:59 a.m.•52 views

CVE-2016-9193

A vulnerability in the malicious file detection and blocking features of Cisco Firepower Management Center and Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass malware detection mechanisms on an affected system. Affected Products: Cisco Firepower Management ...

7.5CVSS7.5AI score0.00383EPSS

CVE•added 2019/10/02 7:15 p.m.•51 views

CVE-2019-12683

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input validation. An attacker could...

9CVSS9.2AI score0.00945EPSS

CVE•added 2018/07/16 5:29 p.m.•48 views

CVE-2018-0384

A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a URL-based access control policy that is configured to block traffic for an affected system. The vulnerability exists because the affected software incorrectly handl...

5.8CVSS5.7AI score0.00463EPSS

CVE•added 2016/02/26 5:59 a.m.•46 views

CVE-2016-1342

The device login page in Cisco FirePOWER Management Center 5.3 through 6.0.0.1 allows remote attackers to obtain potentially sensitive software-version information by reading help files, aka Bug ID CSCuy36654.

5.3CVSS5.1AI score0.0023EPSS

CVE•added 2017/04/20 10:59 p.m.•45 views

CVE-2016-6368

A vulnerability in the detection engine parsing of Pragmatic General Multicast (PGM) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability ...

8.6CVSS8.4AI score0.00379EPSS

CVE•added 2017/04/07 5:59 p.m.•44 views

CVE-2017-3885

A vulnerability in the detection engine reassembly of Secure Sockets Layer (SSL) packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition because the Snort process consumes a high level of CPU resources. Affected Produc...

7.1CVSS5.8AI score0.00453EPSS

CVE•added 2020/05/06 5:15 p.m.•43 views

CVE-2020-3318

Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower User Agent Software could allow an attacker to access a sensitive part of an affected system with a high-privileged account. For more information about these vulnerabilities, see the Details section of ...

9.8CVSS8.9AI score0.00408EPSS

CVE•added 2019/02/07 10:29 p.m.•42 views

CVE-2019-1671

A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected system. The vulnerability is due to ins...

6.1CVSS5.9AI score0.00124EPSS

CVE•added 2015/12/15 5:59 a.m.•41 views

CVE-2015-6411

Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides verbose responses to requests for help files, which allows remote attackers to obtain potentially sensitive version information by reading an unspecified field, aka Bug ID CSCux37061.

5CVSS6.5AI score0.0025EPSS

CVE•added 2017/02/03 7:59 a.m.•41 views

CVE-2017-3814

A vulnerability in Cisco Firepower System Software could allow an unauthenticated, remote attacker to maliciously bypass the appliance's ability to block certain web content, aka a URL Bypass. More Information: CSCvb93980. Known Affected Releases: 5.3.0 5.4.0 6.0.0 6.0.1 6.1.0.

5.8CVSS5.6AI score0.00317EPSS

CVE•added 2017/07/04 12:29 a.m.•41 views

CVE-2017-6717

A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface. More Information: CSCvc38801. Known Affected Releases: 6.0.1.3 6.2.1. Known Fixed Releases: 6.2...

5.4CVSS5.2AI score0.00171EPSS

CVE•added 2019/10/02 7:15 p.m.•41 views

CVE-2019-12681

9CVSS9.2AI score0.00945EPSS

CVE•added 2020/05/06 5:15 p.m.•40 views

CVE-2020-3301

8.1CVSS6.3AI score0.00199EPSS