CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-6674

A vulnerability in the feature-license management functionality of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass URL filters that have been configured for an affected device. More Information: CSCvb16413. Known Affected Releases: 6.0.1 6.1.0 6.2.0 6.2.1. Known Fixed Releases: 6.2.1 6.2.0.1 6.1.0.2.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 44.3%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 5.0

References

http://www.securityfocus.com/bid/98654
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170524-fmc
http://www.securityfocus.com/bid/98654
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170524-fmc

Products affected by CVE-2017-6674

Cisco » Firesight System » Version: 6.0.1

cpe:2.3:a:cisco:firesight_system:6.0.1
Cisco » Firesight System » Version: 6.1.0

cpe:2.3:a:cisco:firesight_system:6.1.0
Cisco » Firesight System » Version: 6.2.0

cpe:2.3:a:cisco:firesight_system:6.2.0
Cisco » Firesight System » Version: 6.2.1

cpe:2.3:a:cisco:firesight_system:6.2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6674

Products

Pricing

Contact Us