Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sourcefire 3d sensor vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2009-2344
The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor prior to 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an edit action to admin/user/user.cgi and unspecified other components.
Sourcefire 3d Sensor 4.8
Sourcefire 3d Sensor 4.8.0.4
Sourcefire Defense Center 4.8
Sourcefire Defense Center 4.8.0.3
Sourcefire Defense Center
Sourcefire 3d Sensor 4.8.0.3
Sourcefire Defense Center 4.8.0.4
Sourcefire 3d Sensor
1 EDB exploit
4.3
CVSSv2
CVE-2010-2306
The default installation of Sourcefire 3D Sensor 1000, 2000, and 9900; and Defense Center 1000; uses the same static, private SSL keys for multiple devices and installations, which allows remote malicious users to decrypt SSL traffic via a man-in-the-middle (MITM) attack.
Sourcefire 3d2000
Sourcefire 3d9900
Sourcefire 3d1000
Sourcefire Dc1000
4
CVSSv2
CVE-2015-0739
The Lights-Out Management (LOM) implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller (BMC) file uploads via unspecified vectors, aka Bug ID CSCus87938.
Cisco Firesight System Software 5.3.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started