Vulnerabilities > Cisco > Firepower Device Manager ON BOX

DATE CVE VULNERABILITY TITLE RISK
2021-07-22 CVE-2021-1518 Code Injection vulnerability in Cisco Firepower Device Manager On-Box
A vulnerability in the REST API of Cisco Firepower Device Manager (FDM) On-Box Software could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system of an affected device.
network
low complexity
cisco CWE-94
8.8
8.8
2020-05-06 CVE-2020-3310 Improper Restriction of Operations within the Bounds of a Memory Buffer vulnerability in Cisco Firepower Device Manager On-Box
A vulnerability in the XML parser code of Cisco Firepower Device Manager On-Box software could allow an authenticated, remote attacker to cause an affected system to become unstable or reload.
network
low complexity
cisco CWE-119
4.9
4.9
2020-05-06 CVE-2020-3309 Out-of-bounds Write vulnerability in Cisco Firepower Device Manager On-Box
A vulnerability in Cisco Firepower Device Manager (FDM) On-Box software could allow an authenticated, remote attacker to overwrite arbitrary files on the underlying operating system of an affected device.
network
low complexity
cisco CWE-787
7.2
7.2