Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sourcefire 3d sensor vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-2344
The web-based management interfaces in Sourcefire Defense Center (DC) and 3D Sensor prior to 4.8.2 allow remote authenticated users to gain privileges via a $admin value for the admin parameter in an edit action to admin/user/user.cgi and unspecified other components.
Sourcefire 3d Sensor 4.8
Sourcefire 3d Sensor 4.8.0.4
Sourcefire Defense Center 4.8
Sourcefire Defense Center 4.8.0.3
Sourcefire Defense Center
Sourcefire 3d Sensor 4.8.0.3
Sourcefire Defense Center 4.8.0.4
Sourcefire 3d Sensor
1 EDB exploit
NA
CVE-2010-2306
The default installation of Sourcefire 3D Sensor 1000, 2000, and 9900; and Defense Center 1000; uses the same static, private SSL keys for multiple devices and installations, which allows remote malicious users to decrypt SSL traffic via a man-in-the-middle (MITM) attack.
Sourcefire 3d2000
Sourcefire 3d9900
Sourcefire 3d1000
Sourcefire Dc1000
NA
CVE-2015-0739
The Lights-Out Management (LOM) implementation in Cisco FireSIGHT System Software 5.3.0 on Sourcefire 3D Sensor devices allows remote authenticated users to perform arbitrary Baseboard Management Controller (BMC) file uploads via unspecified vectors, aka Bug ID CSCus87938.
Cisco Firesight System Software 5.3.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started