Vulnerabilities > Cisco > Firepower Extensible Operating System > High

DATE	CVE	VULNERABILITY TITLE	RISK
2017-04-07	CVE-2017-6597	OS Command Injection vulnerability in Cisco products A vulnerability in the local-mgmt CLI command of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (NGFW), and Cisco Firepower 9300 Security Appliance could allow an authenticated, local attacker to perform a command injection attack. local low complexity cisco CWE-78	7.2
2015-11-19	CVE-2015-6370	OS Command Injection vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) The Management I/O (MIO) component in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows local users to execute arbitrary OS commands as root via crafted CLI input, aka Bug ID CSCux10578. local low complexity cisco CWE-78	7.2

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.