CVE-2016-6420: Cisco FireSIGHT System Software 4.10.3 through 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain…

medium6.5CVSS 3.0

AVNACLPRLUINSUCHINAN

Cisco FireSIGHT System Software 4.10.3 through 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain privileges via a crafted HTTP request, aka Bug ID CSCur25467.

Affected

6 ranges

Vendor	Product	Version range	Fixed in
cisco	firepower_management_center	—	—
cisco	firesight_system_software	—	—
cisco	firesight_system_software	—	—
cisco	firesight_system_software	—	—
cisco	firesight_system_software	—	—
cisco	firesight_system_software	—	—