Total
147 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2016-6435 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 4.0 MEDIUM | 6.5 MEDIUM |
The web console in Cisco Firepower Management Center 6.0.1 allows remote authenticated users to read arbitrary files via crafted parameters, aka Bug ID CSCva30376. | |||||
CVE-2016-1342 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 5.0 MEDIUM | 5.3 MEDIUM |
The device login page in Cisco FirePOWER Management Center 5.3 through 6.0.0.1 allows remote attackers to obtain potentially sensitive software-version information by reading help files, aka Bug ID CSCuy36654. | |||||
CVE-2016-1431 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 4.3 MEDIUM | 6.1 MEDIUM |
Cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center 4.10.3, 5.2.0, 5.3.0, 5.3.1, and 5.4.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCur25516. | |||||
CVE-2016-6419 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 6.0 MEDIUM | 7.5 HIGH |
SQL injection vulnerability in Cisco Firepower Management Center 4.10.3 through 5.4.0 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors, aka Bug ID CSCur25485. | |||||
CVE-2015-6411 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 5.0 MEDIUM | N/A |
Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides verbose responses to requests for help files, which allows remote attackers to obtain potentially sensitive version information by reading an unspecified field, aka Bug ID CSCux37061. | |||||
CVE-2016-6434 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 4.6 MEDIUM | 7.8 HIGH |
Cisco Firepower Management Center 6.0.1 has hardcoded database credentials, which allows local users to obtain sensitive information by leveraging CLI access, aka Bug ID CSCva30370. | |||||
CVE-2016-6433 | 1 Cisco | 1 Firepower Management Center | 2023-12-10 | 9.0 HIGH | 8.8 HIGH |
The Threat Management Console in Cisco Firepower Management Center 5.2.0 through 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872. |