Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firesight system software 5.4.0.4 vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2015-6335
The policy implementation in Cisco FireSIGHT Management Center 5.3.1.7, 5.4.0.4, and 6.0.0 for VMware allows remote authenticated administrators to bypass intended policy restrictions and execute Linux commands as root via unspecified vectors, aka Bug ID CSCuw12839.
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.3.1.7
312
VMScore
CVE-2015-6353
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center (MC) 5.3.1.5 and 5.4.x up to and including 5.4.1.3 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuu28922.
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.3.1.5
445
VMScore
CVE-2016-1345
Cisco FireSIGHT System Software 5.4.0 up to and including 6.0.1 and ASA with FirePOWER Services 5.4.0 up to and including 6.0.0.1 allow remote malicious users to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726.
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.4.0
Cisco Asa With Firepower Services 5.4.0.1
Cisco Asa With Firepower Services 5.4.0
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 5.4.1.3
Cisco Asa With Firepower Services 6.0.0.1
Cisco Asa With Firepower Services 6.0.0
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 6.0.0
Cisco Asa With Firepower Services 5.4.0.3
Cisco Asa With Firepower Services 5.4.0.2
Cisco Asa With Firepower Services 5.4.0.6
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.4.0.1
Cisco Asa With Firepower Services 5.4.0.5
1 Article
445
VMScore
CVE-2015-6427
Cisco FireSIGHT Management Center allows remote malicious users to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.3.1.7
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0
516
VMScore
CVE-2016-6394
Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT System Software up to and including 6.1.0 allows remote malicious users to hijack web sessions via a session identifier, aka Bug ID CSCuz80503.
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.2.0.2
312
VMScore
CVE-2016-6395
Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz...
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.1.1.4
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.2.0.6
445
VMScore
CVE-2016-6396
Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1, when certain malware blocking options are enabled, allow remote malicious users to bypass malware detection via crafted fields in HTTP headers, aka Bug ID CSCuz44482.
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.1.0.1
Cisco Firesight System Software 5.1.1.5
Cisco Firesight System Software 5.1.1.6
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.1.1
Cisco Firesight System Software 5.1.1.1
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.10
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.0.1
605
VMScore
CVE-2016-6417
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 4.10.2 up to and including 6.1.0 and Firepower Management Center allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCva21636.
Cisco Firesight System Software 4.10.2
Cisco Firesight System Software 5.1.0
Cisco Firesight System Software 4.10.2.4
Cisco Firesight System Software 4.10.2.5
Cisco Firesight System Software 4.10.3.7
Cisco Firesight System Software 4.10.3.8
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 4.10.2.2
Cisco Firesight System Software 4.10.2.3
Cisco Firesight System Software 4.10.3.5
384
VMScore
CVE-2015-1788
The BN_GF2m_mod_inv function in crypto/bn/bn_gf2m.c in OpenSSL prior to 0.9.8s, 1.0.0 prior to 1.0.0e, 1.0.1 prior to 1.0.1n, and 1.0.2 prior to 1.0.2b does not properly handle ECParameters structures in which the curve is over a malformed binary polynomial field, which allows re...
Openssl Openssl
Openssl Openssl 1.0.1m
Openssl Openssl 1.0.2a
Openssl Openssl 1.0.1j
Openssl Openssl 1.0.0n
Openssl Openssl 1.0.1
Openssl Openssl 1.0.0c
Openssl Openssl 1.0.0i
Openssl Openssl 1.0.0
Openssl Openssl 1.0.1h
Openssl Openssl 1.0.0m
Openssl Openssl 1.0.1c
Openssl Openssl 1.0.1g
Openssl Openssl 1.0.0h
Openssl Openssl 1.0.0e
Openssl Openssl 1.0.0f
Openssl Openssl 1.0.0d
Openssl Openssl 1.0.0j
Openssl Openssl 1.0.0p
Openssl Openssl 1.0.1a
Openssl Openssl 1.0.0o
Openssl Openssl 1.0.1d
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started