CVE-2015-6427

CWE-254 CWE-3104 documents4 sources

Severity

5.0MEDIUM

EPSS

0.4%

top 39.51%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Firesight System Software

Timeline

PublishedDec 18

Latest updateMay 17

Description

Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.

CVSS vector

AV:N/AC:L/C:N/I:P/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/firesight_system_software20 versions+19

🔴Vulnerability Details

GHSA

GHSA-c2fq-jf74-fghj: Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL↗2022-05-17

▶

CVEList

CVE-2015-6427: Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL↗2015-12-18

▶

📋Vendor Advisories

Cisco

Cisco FireSIGHT Management Center SSL HTTP Attack Detection Vulnerability↗2015-12-17

▶