Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2021-1267

Опубликовано: 13 янв. 2021
Источник: nvd
CVSS3: 4.3
CVSS3: 4.3
CVSS2: 4
EPSS Низкий

Описание

A vulnerability in the dashboard widget of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper restrictions on XML entities. An attacker could exploit this vulnerability by crafting an XML-based widget on an affected server. A successful exploit could cause increased memory and CPU utilization, which could result in a DoS condition.

Ссылки

Уязвимые конфигурации

Конфигурация 1
cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*
Версия до 6.6.1 (исключая)

EPSS

Процентиль: 61%
0.00406
Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-776
CWE-776

Связанные уязвимости

github логотип

GHSA-5j3f-6x5j-rrv5

CVSS3: 4.3
github
больше 3 лет назад

A vulnerability in the dashboard widget of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper restrictions on XML entities. An attacker could exploit this vulnerability by crafting an XML-based widget on an affected server. A successful exploit could cause increased memory and CPU utilization, which could result in a DoS condition.

fstec логотип

BDU:2021-00287

CVSS3: 4.3
fstec
около 5 лет назад

Уязвимость панели управления программного обеспечения администрирования сети Cisco Firepower Management Center (FMC), позволяющая нарушителю вызвать отказ в обслуживании

EPSS

Процентиль: 61%
0.00406
Низкий

4.3 Medium

CVSS3

4.3 Medium

CVSS3

4 Medium

CVSS2

Дефекты

CWE-776
CWE-776
Уязвимость CVE-2021-1267