Vulnerabilities > Cisco > Firepower Threat Defense

DATE CVE VULNERABILITY TITLE RISK
2019-10-02 CVE-2019-12675 Improper Encoding or Escaping of Output vulnerability in Cisco products
Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace.
local
low complexity
cisco CWE-116
8.8
2019-10-02 CVE-2019-12674 Improper Encoding or Escaping of Output vulnerability in Cisco products
Multiple vulnerabilities in the multi-instance feature of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to escape the container for their FTD instance and execute commands with root privileges in the host namespace.
local
low complexity
cisco CWE-116
8.2
2019-10-02 CVE-2019-12673 Improper Input Validation vulnerability in Cisco Adaptive Security Appliance
A vulnerability in the FTP inspection engine of Cisco Adaptive Security (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
network
low complexity
cisco CWE-20
7.5
2019-08-21 CVE-2019-12627 Unspecified vulnerability in Cisco Firepower Threat Defense
A vulnerability in the application policy configuration of the Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to gain unauthorized read access to sensitive data.
network
low complexity
cisco
7.5
2019-08-08 CVE-2019-1970 Protection Mechanism Failure vulnerability in Cisco Firepower Threat Defense
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system.
network
low complexity
cisco CWE-693
7.5
2019-05-03 CVE-2019-1715 Insufficient Entropy in PRNG vulnerability in Cisco products
A vulnerability in the Deterministic Random Bit Generator (DRBG), also known as Pseudorandom Number Generator (PRNG), used in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a cryptographic collision, enabling the attacker to discover the private key of an affected device.
network
low complexity
cisco CWE-332
7.5
2019-05-03 CVE-2019-1714 Unspecified vulnerability in Cisco products
A vulnerability in the implementation of Security Assertion Markup Language (SAML) 2.0 Single Sign-On (SSO) for Clientless SSL VPN (WebVPN) and AnyConnect Remote Access VPN in Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to successfully establish a VPN session to an affected device.
network
low complexity
cisco
8.6
2019-05-03 CVE-2019-1709 OS Command Injection vulnerability in Cisco products
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack.
local
low complexity
cisco CWE-78
7.8
2019-05-03 CVE-2019-1708 Memory Leak vulnerability in Cisco products
A vulnerability in the Internet Key Exchange Version 2 Mobility and Multihoming Protocol (MOBIKE) feature for the Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of an affected device that leads to a denial of service (DoS) condition.
network
low complexity
cisco CWE-401
8.6
2019-05-03 CVE-2019-1704 Resource Exhaustion vulnerability in Cisco Firepower Threat Defense
Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent or remote attacker to cause a denial of service (DoS) condition.
network
low complexity
cisco CWE-400
7.5