CVE-2015-6419
published 2015-12-12CVE-2015-6419: Cisco FireSIGHT Management Center with software 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote authenticated users to read arbitrary files via a crafted…
medium6.8CVSS 3.1
AVNACLAuSCCINAN
Cisco FireSIGHT Management Center with software 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote authenticated users to read arbitrary files via a crafted GET request, aka Bug ID CSCur25410.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | firesight_management_center_get_request | — | — |
| cisco | firesight_system_software | — | — |
| cisco | firesight_system_software | — | — |
| cisco | firesight_system_software | — | — |
| cisco | firesight_system_software | — | — |
| cisco | firesight_system_software | — | — |
| libmspack_project | libmspack | >= 0 < 0.4-1ubuntu0.1~esm2 | 0.4-1ubuntu0.1~esm2 |
CVSS provenance
nvd6.8MEDIUMAV:N/AC:L/Au:S/C:C/I:N/A:N
osv4.3MEDIUM