Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firepower extensible operating system - vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv2
CVE-2015-6370
The Management I/O (MIO) component in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows local users to execute arbitrary OS commands as root via crafted CLI input, aka Bug ID CSCux10578.
Cisco Firepower Extensible Operating System 1.1(1.160)
4.3
CVSSv2
CVE-2015-6372
Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote malicious users to inject arbitrary web script or HTML via a crafted value, aka Bug ID CSCux10614.
Cisco Firepower Extensible Operating System 1.1(1.160)
4.3
CVSSv2
CVE-2015-6374
The web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices does not properly restrict use of IFRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks and unspecified other attacks via a crafted we...
Cisco Firepower Extensible Operating System 1.1(1.160)
6.5
CVSSv2
CVE-2015-6380
An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote authenticated users to execute arbitrary OS commands via crafted parameters, aka Bug ID CSCux10622.
Cisco Firepower Extensible Operating System 1.1(1.160)
6.8
CVSSv2
CVE-2015-6373
Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCux10611.
Cisco Firepower Extensible Operating System 1.1(1.160)
5
CVSSv2
CVE-2017-12299
A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Firewall Services that could allow an unauthenticated, remote malicious user to send traffic to the local IP address of the device, bypassing any filters...
Cisco Firepower Extensible Operating System 2.2(1.58)
9
CVSSv2
CVE-2017-12277
A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Firepower 9300 Security Appliance could allow an authenticated, remote malicious user to inject arbitrary commands that could be executed with root privil...
Cisco Firepower Extensible Operating System
Cisco Firepower Extensible Operating System 1.1.4
Cisco Firepower Extensible Operating System 2.0.1
7.2
CVSSv2
CVE-2019-12699
Multiple vulnerabilities in the CLI of Cisco FXOS Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local malicious user to execute commands on the underlying operating system (OS) with root privileges. These vulnerabilities are due to insuf...
Cisco Firepower 9300 Firmware 2.4(1.214)
Cisco Firepower 9300 Firmware 2.4(1.216)
Cisco Firepower 9300 Firmware 2.4(2.54)
Cisco Firepower 9300 Firmware R241
Cisco Firepower Threat Defense
Cisco Firepower Extensible Operating System
6.8
CVSSv2
CVE-2019-12700
A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote malicious user to cause a denial...
Cisco Firepower 9300 Firmware R114
Cisco Firepower 9300 Firmware R241
Cisco Firepower Extensible Operating System
Cisco Firepower Management Center
Cisco Firepower Threat Defense
6.8
CVSSv2
CVE-2020-3456
A vulnerability in the Cisco Firepower Chassis Manager (FCM) of Cisco FXOS Software could allow an unauthenticated, remote malicious user to conduct a cross-site request forgery (CSRF) attack against a user of an affected device. The vulnerability is due to insufficient CSRF prot...
Cisco Firepower Extensible Operating System 2.4(1.249)
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5834
CVE-2024-30100
CVE-2024-4577
physical
dos
CVE-2024-30099
CVE-2024-27801
CVE-2024-32146
logic flaw
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »