Cisco Firepower vulnerabilities

CVE-2019-12697 [HIGH] CWE-693 CVE-2019-12697: Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unau Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file types. For more information about these vulnerabilities, see the Details section of this advisory.

CVE-2019-12696 [HIGH] CWE-693 CVE-2019-12696: Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unau Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file types. For more information about these vulnerabilities, see the Details section of this advisory.

CVE-2018-0272 [MEDIUM] CWE-399 CVE-2018-0272: A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could al A vulnerability in the Secure Sockets Layer (SSL) Engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper error handling while processing SSL traffic. An attacker could exploit this vulnerability by sending a large volume of crafted SSL

CVE-2015-6307 [MEDIUM] CWE-399 CVE-2015-6307: Cisco FirePOWER (formerly Sourcefire) 7000 and 8000 devices with software 5.4.0.1 allow remote attac Cisco FirePOWER (formerly Sourcefire) 7000 and 8000 devices with software 5.4.0.1 allow remote attackers to cause a denial of service (inspection-engine outage) via crafted packets, aka Bug ID CSCuu10871.