Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firepower management center 5.4.0 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2016-6419
SQL injection vulnerability in Cisco Firepower Management Center 4.10.3 up to and including 5.4.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCur25485.
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 4.10.3
7.5
CVSSv3
CVE-2018-0385
A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting....
Cisco Firepower Management Center 6.0.0
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.2
Cisco Firepower Management Center 6.3.0
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 6.2.3
5.4
CVSSv3
CVE-2017-6716
A vulnerability in the web framework code of Cisco Firepower Management Center could allow an authenticated, remote malicious user to conduct a stored cross-site scripting (XSS) attack against a user of the web interface of an affected system. Affected Products: Cisco Firepower M...
Cisco Firepower Management Center 5.4.1
Cisco Firepower Management Center 5.4.1.4
Cisco Firepower Management Center 5.3.1.7
Cisco Firepower Management Center 5.4.0.2
Cisco Firepower Management Center 5.4.1.2
Cisco Firepower Management Center 5.4.1.5
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.4.1.6
Cisco Firepower Management Center 5.4.1.9
Cisco Firepower Management Center 5.4.1.3
Cisco Firepower Management Center 5.4.1.1
5.4
CVSSv3
CVE-2017-6715
A vulnerability in the web framework of Cisco Firepower Management Center could allow an authenticated, remote malicious user to conduct a cross-site scripting (XSS) attack against a user of the web interface. Affected Products: Cisco Firepower Management Center Releases 5.4.1.x ...
Cisco Firepower Management Center 5.4.1.4
Cisco Firepower Management Center 5.4.1.2
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.4.1.6
Cisco Firepower Management Center 5.4.1.1
Cisco Firepower Management Center 5.4.0.2
Cisco Firepower Management Center 5.4.1
Cisco Firepower Management Center 5.4.1.3
Cisco Firepower Management Center 5.4.1.5
7.5
CVSSv3
CVE-2017-6632
A vulnerability in the logging configuration of Secure Sockets Layer (SSL) policies for Cisco FirePOWER System Software 5.3.0 up to and including 6.2.2 could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition due to high consumption of sy...
Cisco Firepower Threat Defense 5.4.0
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.0.1.3
Cisco Firepower Threat Defense 5.3.0
Cisco Firepower Threat Defense 6.2 Base
Cisco Firepower Threat Defense 6.0.0
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.2.1
Cisco Firepower Threat Defense 6.0.1
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 6.1.0.2
8.6
CVSSv3
CVE-2018-0233
A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could allow an unauthenticated, remote malicious user to cause the detection engine to consume excessive system memory on an affected devic...
Cisco Firepower Management Center 6.1.0
Cisco Firepower Management Center 6.2.0
Cisco Firepower Management Center 6.2.1
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 6.0.0
6.5
CVSSv3
CVE-2016-6420
Cisco FireSIGHT System Software 4.10.3 up to and including 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain privileges via a crafted HTTP request, aka Bug ID CSCur25467.
Cisco Firesight System Software 4.10.3
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1
8.2
CVSSv3
CVE-2018-0453
A vulnerability in the Sourcefire tunnel control channel protocol in Cisco Firepower System Software running on Cisco Firepower Threat Defense (FTD) sensors could allow an authenticated, local malicious user to execute specific CLI commands with root privileges on the Cisco Firep...
Cisco Firepower Threat Defense 6.0.1
Cisco Firepower Threat Defense 6.2.0
Cisco Firepower Threat Defense 6.2.1
Cisco Firepower Threat Defense 6.2.2
Cisco Firepower Threat Defense 6.0.0
Cisco Firepower Threat Defense 6.1.0
Cisco Firepower Threat Defense 5.4.0
9.1
CVSSv3
CVE-2016-6394
Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT System Software up to and including 6.1.0 allows remote malicious users to hijack web sessions via a session identifier, aka Bug ID CSCuz80503.
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.2.0.2
5.3
CVSSv3
CVE-2016-6396
Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1, when certain malware blocking options are enabled, allow remote malicious users to bypass malware detection via crafted fields in HTTP headers, aka Bug ID CSCuz44482.
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.1.0.1
Cisco Firesight System Software 5.1.1.5
Cisco Firesight System Software 5.1.1.6
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.1.1
Cisco Firesight System Software 5.1.1.1
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.10
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »