Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

cisco firesight system software 6.0.0 vulnerabilities and exploits

(subscribe to this query)
8.6
CVSSv3
CVE-2016-1394
Cisco Firepower System Software 6.0.0 up to and including 6.1.0 has a hardcoded account, which allows remote malicious users to obtain CLI access by leveraging knowledge of the password, aka Bug ID CSCuz56238.
Cisco Firesight System Software 6.1.0Cisco Firesight System Software 6.0.1Cisco Firesight System Software 6.0.0.1Cisco Firesight System Software 6.0.0
7.5
CVSSv3
CVE-2016-1463
Cisco FireSIGHT System Software 5.3.0, 5.3.1, 5.4.0, 6.0, and 6.0.1 allows remote malicious users to bypass Snort rules via crafted parameters in the header of an HTTP packet, aka Bug ID CSCuz20737.
Cisco Firesight System Software 6.0.1Cisco Firesight System Software 5.4.0Cisco Firesight System Software 5.3.0Cisco Firesight System Software 5.3.1Cisco Firesight System Software 6.0.0
NA
CVE-2015-0706
Open redirect vulnerability in Cisco FireSIGHT System Software 5.3.1.1, 5.3.1.2, and 6.0.0 in FireSIGHT Management Center allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a crafted HTTP header, aka Bug IDs CSCut06060, CSCut06...
Cisco Firesight System Software 5.3.1.1Cisco Firesight System Software 5.3.1.2Cisco Firesight System Software 6.0.0
7.5
CVSSv3
CVE-2016-6460
A vulnerability in the FTP Representational State Transfer Application Programming Interface (REST API) for Cisco Firepower System Software could allow an unauthenticated, remote malicious user to bypass FTP malware detection rules and download malware over an FTP connection. Cis...
Cisco Firesight System Software 5.4.0.2Cisco Firesight System Software 5.4.1.6Cisco Firesight System Software 6.2.0Cisco Firesight System Software 5.4.1.1Cisco Firesight System Software 6.1.0Cisco Firesight System Software 6.0.0
6.1
CVSSv3
CVE-2016-1293
Multiple cross-site scripting (XSS) vulnerabilities in the Management Center in Cisco FireSIGHT System Software 6.0.0 and 6.0.1 allow remote malicious users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCux40414.
Cisco Firesight System Software 6.0.0Cisco Firesight System Software 6.0.1
NA
CVE-2015-4270
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSIGHT System Software 5.3.1.5 and 6.0.0 allow remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug IDs CSCuv22557, CSCuv22583, CSCuv22632, CSCuv22641, CSCuv22650, CSCuv22662, CSCu...
Cisco Firesight System Software 5.3.1.5Cisco Firesight System Software 6.0.0
NA
CVE-2015-0707
Cross-site scripting (XSS) vulnerability in Cisco FireSIGHT System Software 5.3.1.1 and 6.0.0 in FireSIGHT Management Center allows remote authenticated users to inject arbitrary web script or HTML via an unspecified parameter, aka Bug ID CSCus85425.
Cisco Firesight System Software 5.3.1.1Cisco Firesight System Software 6.0.0
NA
CVE-2015-6335
The policy implementation in Cisco FireSIGHT Management Center 5.3.1.7, 5.4.0.4, and 6.0.0 for VMware allows remote authenticated administrators to bypass intended policy restrictions and execute Linux commands as root via unspecified vectors, aka Bug ID CSCuw12839.
Cisco Firesight System Software 5.4.0.4Cisco Firesight System Software 6.0.0Cisco Firesight System Software 5.3.1.7
NA
CVE-2015-6427
Cisco FireSIGHT Management Center allows remote malicious users to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.
Cisco Firesight System Software 5.4.0.1Cisco Firesight System Software 5.3.1.4Cisco Firesight System Software 5.3.1.1Cisco Firesight System Software 5.4.1Cisco Firesight System Software 6.0.1Cisco Firesight System Software 6.0.0.1Cisco Firesight System Software 5.3.1.5Cisco Firesight System Software 5.4.1.2Cisco Firesight System Software 5.4.0Cisco Firesight System Software 5.3.0.2Cisco Firesight System Software 5.4.0.4Cisco Firesight System Software 5.3.1.7Cisco Firesight System Software 5.3.1.2Cisco Firesight System Software 6.0.0Cisco Firesight System Software 5.4.1.4Cisco Firesight System Software 5.4.1.3Cisco Firesight System Software 5.3.1Cisco Firesight System Software 5.3.1.3Cisco Firesight System Software 5.3.0.1Cisco Firesight System Software 5.3.0
NA
CVE-2015-6354
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center (MC) 5.4.1.3 and 6.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuv73338.
Cisco Firesight System Software 5.4.1.3Cisco Firesight System Software 6.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injectionSSRFbuffer overflowCVE-2023-28952CVE-2023-41822CVE-2024-27956CVE-2023-7028CVE-2024-34447CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook