Vulnslist

find the latest Cisco vulnerabilities

Cisco Firepower Management Center Software Cross-Site Scripting Vulnerabilities

cisco-sa-fmc-xss-yT8LNSeA · Medium · Published · Updated

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. These vulnerabilities are due to insufficient validation of user-supplied input by the web-based management interface. An attacker could exploit these vulnerabilities by persuading a user of the interface to click a crafted link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the interface or access sensitive, browser-based information. Cisco has released software updates to address these vulnerabilities. There are no workarounds that address these vulnerabilities. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-yT8LNSeA

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address these vulnerabilities.

CVEsCVE-2021-1455, CVE-2021-1456, CVE-2021-1457, CVE-2021-1458
Cisco Bug IDsCSCvw93272, CSCvw93276, CSCvw93282, CSCvw93513
CVSS ScoreBase 4.8
Base 4.8 CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco Firepower Management Center 6.2.3, Cisco Firepower Management Center 6.2.3.1, Cisco Firepower Management Center 6.2.3.2, Cisco Firepower Management Center 6.2.3.3, Cisco Firepower Management Center 6.2.3.4, Cisco Firepower Management Center 6.2.3.5, Cisco Firepower Management Center 6.2.3.6, Cisco Firepower Management Center 6.2.3.7, Cisco Firepower Management Center 6.2.3.9, Cisco Firepower Management Center 6.2.3.10, Cisco Firepower Management Center 6.2.3.11, Cisco Firepower Management Center 6.2.3.12, Cisco Firepower Management Center 6.2.3.13, Cisco Firepower Management Center 6.2.3.14, Cisco Firepower Management Center 6.2.3.15, Cisco Firepower Management Center 6.2.3.8, Cisco Firepower Management Center 6.2.3.16, Cisco Firepower Management Center 6.4.0, Cisco Firepower Management Center 6.4.0.1, Cisco Firepower Management Center 6.4.0.3, Cisco Firepower Management Center 6.4.0.2, Cisco Firepower Management Center 6.4.0.4, Cisco Firepower Management Center 6.4.0.5, Cisco Firepower Management Center 6.4.0.6, Cisco Firepower Management Center 6.4.0.7, Cisco Firepower Management Center 6.4.0.8, Cisco Firepower Management Center 6.4.0.9, Cisco Firepower Management Center 6.4.0.10, Cisco Firepower Management Center 6.4.0.11, Cisco Firepower Management Center 6.6.0, Cisco Firepower Management Center 6.6.0.1, Cisco Firepower Management Center 6.6.1, Cisco Secure Firewall Management Center (FMC), Cisco Secure Firewall Management Center (FMC) Appliances

Related Products

Product CVE Evidence
Cisco Secure Firewall Management Center (FMC) Appliances CVE-2021-1458 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) Appliances CVE-2021-1457 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) Appliances CVE-2021-1456 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) Appliances CVE-2021-1455 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) CVE-2021-1458 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) CVE-2021-1457 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) CVE-2021-1456 Cisco OpenVuln
Cisco Secure Firewall Management Center (FMC) CVE-2021-1455 Cisco OpenVuln
Cisco Firepower Management Center CVE-2021-1458 Cisco OpenVuln
Cisco Firepower Management Center CVE-2021-1457 Cisco OpenVuln
Cisco Firepower Management Center CVE-2021-1456 Cisco OpenVuln
Cisco Firepower Management Center CVE-2021-1455 Cisco OpenVuln