Vulnerabilities > Cisco > Secure Firewall Management Center > 2.9.10

DATE CVE VULNERABILITY TITLE RISK
2019-10-02 CVE-2019-12689 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system of an affected device.
network
low complexity
cisco CWE-20
8.8
8.8
2019-05-03 CVE-2019-1699 OS Command Injection vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to perform a command injection attack.
local
low complexity
cisco CWE-78
7.8
7.8
2019-05-03 CVE-2019-1696 Resource Exhaustion vulnerability in Cisco products
Multiple vulnerabilities in the Server Message Block (SMB) Protocol preprocessor detection engine for Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent or remote attacker to cause a denial of service (DoS) condition.
low complexity
cisco CWE-400
7.4
7.4
2017-11-16 CVE-2017-12300 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the SNORT detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the Server Message Block Version 2 (SMB2) protocol.
network
low complexity
cisco CWE-20
5.8
5.8