Cisco Secure Firewall Management Center vulnerabilities

CVE-2019-1642 [MEDIUM] CWE-79 CVE-2019-1642: A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) sof A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected software. The vulnerability is due to insufficient validation of user-supplied input

CVE-2018-15458 [HIGH] CWE-399 CVE-2018-15458: A vulnerability in the Shell Access Filter feature of Cisco Firepower Management Center (FMC), when A vulnerability in the Shell Access Filter feature of Cisco Firepower Management Center (FMC), when used in conjunction with remote authentication, could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability occurs because the configuration of the Shell Access Filte

CVE-2018-15397 [MEDIUM] CWE-320 CVE-2018-15397: A vulnerability in the implementation of Traffic Flow Confidentiality (TFC) over IPsec functionality A vulnerability in the implementation of Traffic Flow Confidentiality (TFC) over IPsec functionality in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) conditio

CVE-2018-0385 [HIGH] CWE-399 CVE-2018-0385: A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper input handling of the SSL traffic. An attack

CVE-2018-0383 [HIGH] CWE-693 CVE-2018-0383: A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenti A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the transfer of files to an affected system via FTP. The vulnerability exists because the affected software incorrectly handles FTP control connections. An attacker could exploit t

CVE-2018-0370 [HIGH] CWE-399 CVE-2018-0370: A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenti A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause one of the detection engine processes to run out of memory and thus slow down traffic processing. The vulnerability is due to improper handling of traffic when the Secure Sockets Layer (SSL) inspection policy is enabled. An

CVE-2018-0384 [MEDIUM] CWE-693 CVE-2018-0384: A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenti A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a URL-based access control policy that is configured to block traffic for an affected system. The vulnerability exists because the affected software incorrectly handles TCP packets that are received out of order when a T

CVE-2018-0365 [HIGH] CWE-352 CVE-2018-0365: A vulnerability in the web-based management interface of Cisco Firepower Management Center could all A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affec

CVE-2018-0333 [MEDIUM] CWE-693 CVE-2018-0333: A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could allow a A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass VPN security due to unintended side effects of dynamic configuration changes that could allow an attacker to bypass configured policies. The vulnerability is due to incorrect management of the configured inte

CVE-2018-0283 [MEDIUM] CWE-310 CVE-2018-0283: A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenti A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, resulting in a brief denial of service (DoS) condition. The vulnerability is due to the incorrect handling of Transport Layer Security (TLS) TCP connectio

CVE-2018-0278 [MEDIUM] CWE-200 CVE-2018-0278: A vulnerability in the management console of Cisco Firepower System Software could allow an unauthen A vulnerability in the management console of Cisco Firepower System Software could allow an unauthenticated, remote attacker to access sensitive data about the system. The vulnerability is due to improper cross-origin domain protections for the WebSocket protocol. An attacker could exploit this vulnerability by convincing a user to visit a malicious w

CVE-2018-0281 [MEDIUM] CWE-310 CVE-2018-0281: A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenti A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, resulting in a brief denial of service (DoS) condition. The vulnerability is due to the incorrect handling of a Transport Layer Security (TLS) extension d

CVE-2018-0233 [HIGH] CWE-400 CVE-2018-0233: A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection e A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the detection engine to consume excessive system memory on an affected device, which could cause a denial of service (DoS) condition. The vulnerability is du

CVE-2017-12300 [MEDIUM] CWE-20 CVE-2017-12300: A vulnerability in the SNORT detection engine of Cisco Firepower System Software could allow an unau A vulnerability in the SNORT detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the Server Message Block Version 2 (SMB2) protocol. The vulnerability is due to the incorrect detection of an SMB2 file when the detection is based on the length of the fi

CVE-2017-12245 [HIGH] CWE-399 CVE-2017-12245: A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could al A vulnerability in SSL traffic decryption for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause depletion of system memory, aka a Firepower Detection Engine SSL Decryption Memory Consumption Denial of Service vulnerability. If this memory leak persists over time, a denial of service (DoS) condition

CVE-2017-12244 [HIGH] CWE-20 CVE-2017-12244: A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software A vulnerability in the detection engine parsing of IPv6 packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause high CPU utilization or to cause a denial of service (DoS) condition because the Snort process restarts unexpectedly. The vulnerability is due to improper input validation of the fields in the IPv6

CVE-2017-6716 [MEDIUM] CWE-79 CVE-2017-6716: A vulnerability in the web framework code of Cisco Firepower Management Center could allow an authen A vulnerability in the web framework code of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of an affected system. Affected Products: Cisco Firepower Management Center Software Releases prior to 6.0.0.0. More Information: CSCuy8878

CVE-2017-6715 [MEDIUM] CWE-79 CVE-2017-6715: A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticat A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface. Affected Products: Cisco Firepower Management Center Releases 5.4.1.x and prior. More Information: CSCuy88951. Known Affected Releases: 5.4.1.6.

CVE-2017-6717 [MEDIUM] CWE-79 CVE-2017-6717: A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticat A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface. More Information: CSCvc38801. Known Affected Releases: 6.0.1.3 6.2.1. Known Fixed Releases: 6.2.1.

CVE-2017-6673 [MEDIUM] CWE-200 CVE-2017-6673: A vulnerability in Cisco Firepower Management Center could allow an authenticated, remote attacker t A vulnerability in Cisco Firepower Management Center could allow an authenticated, remote attacker to obtain user information. An attacker could use this information to perform reconnaissance. More Information: CSCvc10894. Known Affected Releases: 6.1.0.2 6.2.0. Known Fixed Releases: 6.2.0.