Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firepower management center 4.10.3 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2016-6365
Cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center 4.10.3, 5.2.0, 5.3.0, 5.3.0.2, 5.3.1, and 5.4.0 allows remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug IDs CSCur25508 and CSCur25518.
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.3.0.2
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 4.10.3
4.3
CVSSv2
CVE-2016-1431
Cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCur25516.
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 4.10.3
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.3.0
9
CVSSv2
CVE-2016-1458
The web-based GUI in Cisco Firepower Management Center 4.x and 5.x prior to 5.3.0.3, 5.3.1.x prior to 5.3.1.2, and 5.4.x prior to 5.4.0.1 and Cisco Adaptive Security Appliance (ASA) Software on 5500-X devices with FirePOWER Services 4.x and 5.x prior to 5.3.0.3, 5.3.1.x prior to ...
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 4.10.3
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.1
6
CVSSv2
CVE-2016-6419
SQL injection vulnerability in Cisco Firepower Management Center 4.10.3 up to and including 5.4.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCur25485.
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 4.10.3
6.8
CVSSv2
CVE-2016-6420
Cisco FireSIGHT System Software 4.10.3 up to and including 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain privileges via a crafted HTTP request, aka Bug ID CSCur25467.
Cisco Firesight System Software 4.10.3
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1
6.8
CVSSv2
CVE-2016-6417
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 4.10.2 up to and including 6.1.0 and Firepower Management Center allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCva21636.
Cisco Firesight System Software 4.10.2
Cisco Firesight System Software 5.1.0
Cisco Firesight System Software 4.10.2.4
Cisco Firesight System Software 4.10.2.5
Cisco Firesight System Software 4.10.3.7
Cisco Firesight System Software 4.10.3.8
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 4.10.2.2
Cisco Firesight System Software 4.10.2.3
Cisco Firesight System Software 4.10.3.5
5.8
CVSSv2
CVE-2021-3450
The X509_V_FLAG_X509_STRICT flag enables additional security checks of the certificates present in a certificate chain. It is not set by default. Starting from OpenSSL version 1.1.1h a check to disallow certificates in the chain that have explicitly encoded elliptic curve paramet...
Openssl Openssl
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider Firmware -
Netapp Storagegrid Firmware -
Windriver Linux -
Windriver Linux 18.0
Windriver Linux 19.0
Windriver Linux 17.0
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Ontap Select Deploy Administration Utility -
Netapp Cloud Volumes Ontap Mediator -
Fedoraproject Fedora 34
Tenable Nessus Agent
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Oracle Jd Edwards World Security A9.4
Oracle Weblogic Server 12.2.1.4.0
1 Github repository
1 Article
4.3
CVSSv2
CVE-2021-3449
An OpenSSL TLS server may crash if sent a maliciously crafted renegotiation ClientHello message from a client. If a TLSv1.2 renegotiation ClientHello omits the signature_algorithms extension (where it was present in the initial ClientHello), but includes a signature_algorithms_ce...
Openssl Openssl
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Freebsd Freebsd 12.2
Netapp Santricity Smi-s Provider -
Netapp Snapcenter -
Netapp Oncommand Workflow Automation -
Netapp Storagegrid -
Netapp Oncommand Insight -
Netapp Ontap Select Deploy Administration Utility -
Netapp Active Iq Unified Manager -
Netapp Cloud Volumes Ontap Mediator -
Netapp E-series Performance Analyzer -
Tenable Tenable.sc
Tenable Nessus
Tenable Nessus Network Monitor 5.11.1
Tenable Nessus Network Monitor 5.12.0
Tenable Nessus Network Monitor 5.12.1
Tenable Nessus Network Monitor 5.13.0
Tenable Nessus Network Monitor 5.11.0
Tenable Log Correlation Engine
Fedoraproject Fedora 34
5 Github repositories
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started