Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco firesight system software 5.4.0.1 vulnerabilities and exploits
(subscribe to this query)
312
VMScore
CVE-2015-6353
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center (MC) 5.3.1.5 and 5.4.x up to and including 5.4.1.3 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuu28922.
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.3.1.5
605
VMScore
CVE-2015-6357
The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 up to and including 5.4.0.1 does not verify the X.509 certificate of the support.sourcefire.com SSL server, which allows man-in-the-middle malicious users to spoof this server and provide an invalid package, an...
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.0
1 Github repository
445
VMScore
CVE-2015-6427
Cisco FireSIGHT Management Center allows remote malicious users to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.3.1.7
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0
445
VMScore
CVE-2016-1345
Cisco FireSIGHT System Software 5.4.0 up to and including 6.0.1 and ASA with FirePOWER Services 5.4.0 up to and including 6.0.0.1 allow remote malicious users to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726.
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.4.0
Cisco Asa With Firepower Services 5.4.0.1
Cisco Asa With Firepower Services 5.4.0
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 5.4.1.3
Cisco Asa With Firepower Services 6.0.0.1
Cisco Asa With Firepower Services 6.0.0
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 6.0.0
Cisco Asa With Firepower Services 5.4.0.3
Cisco Asa With Firepower Services 5.4.0.2
Cisco Asa With Firepower Services 5.4.0.6
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.4.0.1
Cisco Asa With Firepower Services 5.4.0.5
1 Article
694
VMScore
CVE-2016-1368
Cisco FirePOWER System Software 5.3.x up to and including 5.3.0.6 and 5.4.x up to and including 5.4.0.3 on FirePOWER 7000 and 8000 appliances, and on the Advanced Malware Protection (AMP) for Networks component on these appliances, allows remote malicious users to cause a denial ...
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.6
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.2.0.5
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.3.1.7
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 5.2.0.6
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.4.0.3
516
VMScore
CVE-2016-6394
Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT System Software up to and including 6.1.0 allows remote malicious users to hijack web sessions via a session identifier, aka Bug ID CSCuz80503.
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.2.0.2
312
VMScore
CVE-2016-6395
Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuz...
Cisco Firesight System Software 5.4.0.6
Cisco Firesight System Software 5.3.0.4
Cisco Firesight System Software 5.3.0.3
Cisco Firesight System Software 5.3.1.4
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.2
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.1.1.4
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.3.0.7
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 5.4.0.4
Cisco Firesight System Software 5.3.1
Cisco Firesight System Software 5.3.1.3
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.2.0.6
445
VMScore
CVE-2016-6396
Cisco Firepower Management Center prior to 6.1 and FireSIGHT System Software prior to 6.1, when certain malware blocking options are enabled, allow remote malicious users to bypass malware detection via crafted fields in HTTP headers, aka Bug ID CSCuz44482.
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.1.0.1
Cisco Firesight System Software 5.1.1.5
Cisco Firesight System Software 5.1.1.6
Cisco Firesight System Software 5.2.0.3
Cisco Firesight System Software 5.2.0.4
Cisco Firesight System Software 5.1.1
Cisco Firesight System Software 5.1.1.1
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.10
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.3.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.1.2
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.1.4
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 5.4.0.2
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 6.0.0
Cisco Firesight System Software 5.4.0.1
605
VMScore
CVE-2016-6417
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 4.10.2 up to and including 6.1.0 and Firepower Management Center allows remote malicious users to hijack the authentication of arbitrary users, aka Bug ID CSCva21636.
Cisco Firesight System Software 4.10.2
Cisco Firesight System Software 5.1.0
Cisco Firesight System Software 4.10.2.4
Cisco Firesight System Software 4.10.2.5
Cisco Firesight System Software 4.10.3.7
Cisco Firesight System Software 4.10.3.8
Cisco Firesight System Software 5.1.1.2
Cisco Firesight System Software 5.1.1.3
Cisco Firesight System Software 5.1.1.11
Cisco Firesight System Software 5.2.0.1
Cisco Firesight System Software 5.3.0.2
Cisco Firesight System Software 5.4.0
Cisco Firesight System Software 5.4.1
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.2.0.8
Cisco Firesight System Software 6.0.0.1
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 5.4.0.3
Cisco Firesight System Software 5.4.0.5
Cisco Firesight System Software 4.10.2.2
Cisco Firesight System Software 4.10.2.3
Cisco Firesight System Software 4.10.3.5
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started