CVSS: 7.5EPSS: 4%CPEs: 3EXPL: 0CVE-2018-15458 – Cisco Firepower Management Center Disk Utilization Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2018-15458
10 Jan 2019 — A vulnerability in the Shell Access Filter feature of Cisco Firepower Management Center (FMC), when used in conjunction with remote authentication, could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability occurs because the configuration of the Shell Access Filter, when used with a specific type of remote authentication, can cause a system file to have unbounded writes. An attacker could exploit this vulnerability by ... • http://www.securityfocus.com/bid/106516 • CWE-399: Resource Management Errors CWE-770: Allocation of Resources Without Limits or Throttling •
CVSS: 7.1EPSS: 0%CPEs: 5EXPL: 0CVE-2018-15397 – Cisco Adaptive Security Appliance IPsec VPN Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2018-15397
05 Oct 2018 — A vulnerability in the implementation of Traffic Flow Confidentiality (TFC) over IPsec functionality in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to an error that may occur if the affected software renegotiates the encryption key for an IPsec tunnel when certain TFC traffic is i... • http://www.securitytracker.com/id/1041786 • CWE-320: Key Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2018-0370
https://notcve.org/view.php?id=CVE-2018-0370
16 Jul 2018 — A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause one of the detection engine processes to run out of memory and thus slow down traffic processing. The vulnerability is due to improper handling of traffic when the Secure Sockets Layer (SSL) inspection policy is enabled. An attacker could exploit this vulnerability by sending malicious traffic through an affected device. An exploit could allow the attacker to increase the resou... • http://www.securityfocus.com/bid/104728 • CWE-399: Resource Management Errors •
CVSS: 5.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-0384
https://notcve.org/view.php?id=CVE-2018-0384
16 Jul 2018 — A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a URL-based access control policy that is configured to block traffic for an affected system. The vulnerability exists because the affected software incorrectly handles TCP packets that are received out of order when a TCP SYN retransmission is issued. An attacker could exploit this vulnerability by sending a maliciously crafted connection through an affected device. A success... • http://www.securityfocus.com/bid/104725 • CWE-693: Protection Mechanism Failure •
CVSS: 7.5EPSS: 0%CPEs: 7EXPL: 0CVE-2018-0385
https://notcve.org/view.php?id=CVE-2018-0385
16 Jul 2018 — A vulnerability in the detection engine parsing of Security Socket Layer (SSL) protocol packets for Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to the Snort process unexpectedly restarting. The vulnerability is due to improper input handling of the SSL traffic. An attacker could exploit this vulnerability by sending a crafted SSL traffic to the detection engine on the targeted device. An exploit could allow the attacker to ... • http://www.securityfocus.com/bid/104727 • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 8.8EPSS: 0%CPEs: 221EXPL: 0CVE-2018-0365
https://notcve.org/view.php?id=CVE-2018-0365
21 Jun 2018 — A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link. A successful exploit could allow t... • http://www.securityfocus.com/bid/104519 • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-0333
https://notcve.org/view.php?id=CVE-2018-0333
07 Jun 2018 — A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass VPN security due to unintended side effects of dynamic configuration changes that could allow an attacker to bypass configured policies. The vulnerability is due to incorrect management of the configured interface names and VPN parameters when dynamic CLI configuration changes are performed. An attacker could exploit this vulnerability by sending packets through an... • http://www.securityfocus.com/bid/104422 • CWE-693: Protection Mechanism Failure •
CVSS: 6.5EPSS: 0%CPEs: 5EXPL: 0CVE-2018-0278
https://notcve.org/view.php?id=CVE-2018-0278
02 May 2018 — A vulnerability in the management console of Cisco Firepower System Software could allow an unauthenticated, remote attacker to access sensitive data about the system. The vulnerability is due to improper cross-origin domain protections for the WebSocket protocol. An attacker could exploit this vulnerability by convincing a user to visit a malicious website designed to send requests to the affected application while the user is logged into the application with an active session cookie. A successful exploit ... • http://www.securityfocus.com/bid/104122 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-863: Incorrect Authorization •
CVSS: 5.8EPSS: 0%CPEs: 5EXPL: 0CVE-2018-0281
https://notcve.org/view.php?id=CVE-2018-0281
02 May 2018 — A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, resulting in a brief denial of service (DoS) condition. The vulnerability is due to the incorrect handling of a Transport Layer Security (TLS) extension during TLS connection setup for the affected software. An attacker could exploit this vulnerability by sending a crafted TLS connection setup request to an affe... • http://www.securityfocus.com/bid/104096 • CWE-310: Cryptographic Issues CWE-319: Cleartext Transmission of Sensitive Information •
CVSS: 5.8EPSS: 0%CPEs: 4EXPL: 0CVE-2018-0283
https://notcve.org/view.php?id=CVE-2018-0283
02 May 2018 — A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, resulting in a brief denial of service (DoS) condition. The vulnerability is due to the incorrect handling of Transport Layer Security (TLS) TCP connection setup for the affected software. An attacker could exploit this vulnerability by sending crafted TLS traffic to an affected device. A successful exploit coul... • http://www.securityfocus.com/bid/104121 • CWE-310: Cryptographic Issues CWE-319: Cleartext Transmission of Sensitive Information •