Vulnerabilities > Cisco > Firepower 4140 Firmware

DATE CVE VULNERABILITY TITLE RISK
2022-08-25 CVE-2022-20865 OS Command Injection vulnerability in Cisco products
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that are executed with root privileges.
local
low complexity
cisco CWE-78
6.7
6.7
2019-10-02 CVE-2019-12675 Improper Encoding or Escaping of Output vulnerability in Cisco products
Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace.
local
low complexity
cisco CWE-116
7.2
7.2
2019-10-02 CVE-2019-12674 Improper Encoding or Escaping of Output vulnerability in Cisco products
Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace.
local
low complexity
cisco CWE-116
7.2
7.2