Vulnerabilities > Cisco > Secure Firewall Management Center > High

DATE CVE VULNERABILITY TITLE RISK
2020-05-06 CVE-2020-3302 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the web UI of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to overwrite files on the file system of an affected device.
network
low complexity
cisco CWE-20
8.1
2019-10-02 CVE-2019-12690 OS Command Injection vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to inject arbitrary commands that are executed with the privileges of the root user of the underlying operating system.
network
low complexity
cisco CWE-78
7.2
2019-10-02 CVE-2019-12689 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center
A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system of an affected device.
network
low complexity
cisco CWE-20
8.8
2019-10-02 CVE-2019-12688 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center 6.2.2
A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device.
network
low complexity
cisco CWE-20
8.8
2019-10-02 CVE-2019-12687 Improper Input Validation vulnerability in Cisco Secure Firewall Management Center 6.2.2/6.2.3
A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device.
network
low complexity
cisco CWE-20
8.8
2019-10-02 CVE-2019-12686 SQL Injection vulnerability in Cisco Secure Firewall Management Center 6.2.3/6.3.0
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device.
network
low complexity
cisco CWE-89
8.8
2019-10-02 CVE-2019-12685 SQL Injection vulnerability in Cisco Secure Firewall Management Center 6.2.2
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device.
network
low complexity
cisco CWE-89
8.8
2019-10-02 CVE-2019-12684 SQL Injection vulnerability in Cisco Secure Firewall Management Center 6.2.0/6.2.2/6.2.3
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device.
network
low complexity
cisco CWE-89
8.8
2019-10-02 CVE-2019-12683 SQL Injection vulnerability in Cisco Secure Firewall Management Center
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device.
network
low complexity
cisco CWE-89
8.8
2019-10-02 CVE-2019-12682 SQL Injection vulnerability in Cisco Secure Firewall Management Center 6.2.2
Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device.
network
low complexity
cisco CWE-89
8.8