CVEDB API

Vulnerabilities

Vulnerable Software

Cisco: >> Firepower Management Center Virtual Appliance >> 6.1.0 Security Vulnerabilities

CVE-2021-34763

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an attacker to execute a cross-site scripting (XSS) attack or an open redirect attack. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS Score

4.8

EPSS Score

0.003

Published

2021-10-27

CVE-2021-34764

CVSS Score

4.8

EPSS Score

0.003

Published

2021-10-27

CVE-2021-34755

Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS Score

6.7

EPSS Score

0.001

Published

2021-10-27

CVE-2021-34756

CVSS Score

6.7

EPSS Score

0.001

Published

2021-10-27

CVE-2018-0365

A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link. A successful exploit could allow the attacker to perform arbitrary actions on the targeted device via a web browser and with the privileges of the user. Cisco Bug IDs: CSCvb19750.

CVSS Score

8.8

EPSS Score

0.002

Published

2018-06-21

Page 1

Vulnerabilities

Vulnerable Software

Cisco: >> Firepower Management Center Virtual Appliance >> 6.1.0 Security Vulnerabilities

Products

Pricing

Contact Us