Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firesight system software 5.2.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6419
Cisco FireSIGHT Management Center with software 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote authenticated users to read arbitrary files via a crafted GET request, aka Bug ID CSCur25410.
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 4.10.3
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
NA
CVE-2015-6357
The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 up to and including 5.4.0.1 does not verify the X.509 certificate of the support.sourcefire.com SSL server, which allows man-in-the-middle malicious users to spoof this server and provide an invalid package, an...
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.0
1 Github repository
7.5
CVSSv3
CVE-2016-1368
Cisco FirePOWER System Software 5.3.x up to and including 5.3.0.6 and 5.4.x up to and including 5.4.0.3 on FirePOWER 7000 and 8000 appliances, and on the Advanced Malware Protection (AMP) for Networks component on these appliances, allows remote malicious users to cause a denial ...
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.6
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.2.0.5
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.3.1.7
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 5.2.0.6
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.4.0.3
9.1
CVSSv3
CVE-2016-6394
Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT System Software up to and including 6.1.0 allows remote malicious users to hijack web sessions via a session identifier, aka Bug ID CSCuz80503.
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.2.0.2
5.4
CVSSv3
CVE-2016-6395
Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz...
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.1.1.4
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.2.0.6
5.3
CVSSv3
CVE-2016-6396
Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1, when certain malware blocking options are enabled, allow remote malicious users to bypass malware detection via crafted fields in HTTP headers, aka Bug ID CSCuz44482.
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.1.0.1
Cisco Firesight System Software 5.1.1.5
Cisco Firesight System Software 5.1.1.6
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.1.1
Cisco Firesight System Software 5.1.1.1
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.10
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.0.1
8.8
CVSSv3
CVE-2016-6417
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 4.10.2 up to and including 6.1.0 and Firepower Management Center allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCva21636.
Cisco Firesight System Software 4.10.2
Cisco Firesight System Software 5.1.0
Cisco Firesight System Software 4.10.2.4
Cisco Firesight System Software 4.10.2.5
Cisco Firesight System Software 4.10.3.7
Cisco Firesight System Software 4.10.3.8
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 4.10.2.2
Cisco Firesight System Software 4.10.2.3
Cisco Firesight System Software 4.10.3.5
6.5
CVSSv3
CVE-2016-6420
Cisco FireSIGHT System Software 4.10.3 up to and including 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain privileges via a crafted HTTP request, aka Bug ID CSCur25467.
Cisco Firesight System Software 4.10.3
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1
7.5
CVSSv3
CVE-2016-2180
The TS_OBJ_print_bio function in crypto/ts/ts_lib.c in the X.509 Public Key Infrastructure Time-Stamp Protocol (TSP) implementation in OpenSSL up to and including 1.0.2h allows remote malicious users to cause a denial of service (out-of-bounds read and application crash) via a cr...
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.2e
Openssl Openssl 1.0.1r
Openssl Openssl 1.0.2b
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.2g
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.2h
Openssl Openssl 1.0.1d
Openssl Openssl 1.0.1t
Openssl Openssl 1.0.2c
Openssl Openssl 1.0.1p
Openssl Openssl 1.0.1k
Openssl Openssl 1.0.1b
Openssl Openssl 1.0.1n
Openssl Openssl 1.0.1q
Openssl Openssl 1.0.1e
Openssl Openssl 1.0.1l
NA
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl Openssl
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.1
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »