cisco-sa-20170607-fmc

Cisco Firepower Management Center Information Disclosure Vulnerability

cisco-sa-20170607-fmc · Medium · Published 8 years ago · Updated 8 years ago

A vulnerability in Cisco Firepower Management Center could allow an authenticated, remote attacker to obtain user information. An attacker could use this information to perform reconnaissance. The vulnerability is due to verbose output in HTTP log files. An attacker could retrieve the log files from an affected system and use the information to conduct further attacks. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170607-fmc

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEs	CVE-2017-6673
Cisco Bug IDs	CSCvc10894
CVSS Score	Base 4.3 Base 4.3 CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N/E:X/RL:X/RC:X
Product Names From Source	Cisco Firepower Management Center, Cisco Secure Firewall Management Center (FMC)

Related Products

Product	CVE	Evidence
Cisco Secure Firewall Management Center (FMC)	CVE-2017-6673	Cisco OpenVuln
Cisco Firepower Management Center	CVE-2017-6673	Cisco OpenVuln

Vulnslist

find the latest Cisco vulnerabilities

Cisco Firepower Management Center Information Disclosure Vulnerability

Workarounds

Related Products