Vulnerability Details CVE-2016-9193
A vulnerability in the malicious file detection and blocking features of Cisco Firepower Management Center and Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass malware detection mechanisms on an affected system. Affected Products: Cisco Firepower Management Center and FireSIGHT System Software are affected when they are configured to use a file policy that has the Block Malware action. More Information: CSCvb27494. Known Affected Releases: 6.0.1.1 6.1.0.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 58.6%
CVSS Severity
CVSS v3 Score 7.5
CVSS v2 Score 5.0
References
- http://www.securityfocus.com/bid/94801
- http://www.securitytracker.com/id/1037421
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-firepower
- http://www.securityfocus.com/bid/94801
- http://www.securitytracker.com/id/1037421
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20161207-firepower
Products affected by CVE-2016-9193
-
cpe:2.3:a:cisco:firesight_system_software:6.0.0
-
cpe:2.3:a:cisco:firesight_system_software:6.0.0.0
-
cpe:2.3:a:cisco:firesight_system_software:6.0.0.1
-
cpe:2.3:a:cisco:firesight_system_software:6.0.1
-
cpe:2.3:a:cisco:firesight_system_software:6.0.1.1
-
cpe:2.3:a:cisco:firesight_system_software:6.1.0
-
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0
-
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0.0
-
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0.1
-
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.1
-
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.1.1
-
cpe:2.3:a:cisco:secure_firewall_management_center:6.1.0