CVE-2015-6307Cisco Firepower vulnerability

CWE-3994 documents4 sources
Severity
6.1MEDIUMNVD
EPSS
0.1%
top 73.06%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Firepower
Timeline
PublishedSep 28
Latest updateMay 17

Description

Cisco FirePOWER (formerly Sourcefire) 7000 and 8000 devices with software 5.4.0.1 allow remote attackers to cause a denial of service (inspection-engine outage) via crafted packets, aka Bug ID CSCuu10871.

CVSS vector

AV:A/AC:L/C:N/I:N/A:CExploitability: 6.5 | Impact: 6.9

Affected Packages1 packages

NVDcisco/firepower5.4.0.1

🔴Vulnerability Details

2
GHSA
GHSA-qpj2-qj62-9mwf: Cisco FirePOWER (formerly Sourcefire) 7000 and 8000 devices with software 52022-05-17
CVEList
CVE-2015-6307: Cisco FirePOWER (formerly Sourcefire) 7000 and 8000 devices with software 52015-09-28

📋Vendor Advisories

1
Cisco
Cisco FirePOWER 7000 and Cisco FirePOWER 8000 Series Inspection Engine Stall Vulnerability2015-09-25
CVE-2015-6307 — Cisco Firepower vulnerability | cvebase