Vulnslist

find the latest Cisco vulnerabilities

Cisco Firepower Management Center Incomplete Rule Set Vulnerability

cisco-sa-20170201-fmc · Medium · Published · Updated

A vulnerability in the Policy deployment module of the Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote attacker to prevent deployment of a complete and accurate rule base. The vulnerability is due to a lack of condition checks in the rules engine. An attacker could exploit this vulnerability by spoofing certain Object IDs of Port objects. An exploit could allow the attacker to push an incomplete rule set. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-fmc

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2017-3809
Cisco Bug IDsCSCvb95281
CVSS ScoreBase 5.8
Base 5.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco Firepower Management Center 6.1.0, Cisco Firepower Management Center 6.2.0, Cisco Secure Firewall Management Center (FMC), Cisco Firepower Management Center

Related Products

Product CVE Evidence
Cisco Secure Firewall Management Center (FMC) CVE-2017-3809 Cisco OpenVuln
Cisco Firepower Management Center CVE-2017-3809 Cisco OpenVuln