CVE-2015-4302

Опубликовано: 19 авг. 2015

Источник: nvd

CVSS2: 6.4

EPSS Низкий

Описание

The web interface in Cisco FireSIGHT Management Center 5.3.1.4 allows remote attackers to delete arbitrary system policies via modified parameters in a POST request, aka Bug ID CSCuu25390.

Ссылки

http://tools.cisco.com/security/center/viewAlert.x?alertId=40432
Vendor Advisory
http://www.securityfocus.com/bid/76345
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1033279
Third Party Advisory
VDB Entry
http://tools.cisco.com/security/center/viewAlert.x?alertId=40432
Vendor Advisory
http://www.securityfocus.com/bid/76345
Third Party Advisory
VDB Entry
http://www.securitytracker.com/id/1033279
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:cisco:firesight_system_software:5.3.1.4:*:*:*:*:*:*:*

EPSS

Процентиль: 71%

0.00696

Низкий

6.4 Medium

CVSS2

Дефекты

CWE-284

Связанные уязвимости

GHSA-r9jq-vwjm-mmc4

github

больше 3 лет назад