Vulnerabilities > Cisco > Firepower Management Center
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-10-02 | CVE-2019-12701 | Improper Input Validation vulnerability in Cisco products A vulnerability in the file and malware inspection feature of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to bypass the file and malware inspection policies on an affected system. | 5.8 |
| 2019-10-02 | CVE-2019-12700 | Unspecified vulnerability in Cisco products A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. | 6.5 |
| 2019-10-02 | CVE-2019-12691 | Path Traversal vulnerability in Cisco Firepower Management Center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to perform a directory traversal attack on an affected device. | 4.9 |
| 2019-10-02 | CVE-2019-12690 | OS Command Injection vulnerability in Cisco Firepower Management Center A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to inject arbitrary commands that are executed with the privileges of the root user of the underlying operating system. | 7.2 |
| 2019-10-02 | CVE-2019-12689 | Improper Input Validation vulnerability in Cisco Firepower Management Center A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system of an affected device. | 8.8 |
| 2019-10-02 | CVE-2019-12688 | Improper Input Validation vulnerability in Cisco Firepower Management Center 6.2.2 A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. | 8.8 |
| 2019-10-02 | CVE-2019-12687 | Improper Input Validation vulnerability in Cisco Firepower Management Center 6.2.2/6.2.3 A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. | 8.8 |
| 2019-10-02 | CVE-2019-12686 | SQL Injection vulnerability in Cisco Firepower Management Center 6.2.3/6.3.0 Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. | 8.8 |
| 2019-10-02 | CVE-2019-12685 | SQL Injection vulnerability in Cisco Firepower Management Center 6.2.2 Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. | 8.8 |
| 2019-10-02 | CVE-2019-12684 | SQL Injection vulnerability in Cisco Firepower Management Center 6.2.0/6.2.2/6.2.3 Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. | 8.8 |