Vulnerability CVE-2018-0365


Published: 2018-06-21

Description:
A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link. A successful exploit could allow the attacker to perform arbitrary actions on the targeted device via a web browser and with the privileges of the user. Cisco Bug IDs: CSCvb19750.

Type:

CWE-352

(Cross-Site Request Forgery (CSRF))

Vendor: Cisco
Product: Firepower appliance 8140 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center 1000 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7050 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8260 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Ngips virtual appliance 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7115 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center 4000 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8290 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Amp 7150 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7125 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firesight management center 1500 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8360 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7010 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8130 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firesight management center 750 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8390 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7030 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8250 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center virtual appliance 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center 2000 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7110 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8270 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center 2500 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7120 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower management center 4500 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 8350 firmware 
Version:
6.2.3
6.2.2
6.2.1
6.2.0
See more versions on NVD
Product: Amp 8150 firmware 
Version:
6.2.3
6.2.2
6.2.1
6.2.0
See more versions on NVD
Product: Firepower appliance 8120 firmware 
Version:
6.2.3
6.2.2
6.2.1
6.2.0
See more versions on NVD
Product: Firesight management center 3500 firmware 
Version:
6.2.3
6.2.2
6.2.1
6.2.0
See more versions on NVD
Product: Firepower appliance 8370 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD
Product: Firepower appliance 7020 firmware 
Version:
6.2.3
6.2.2
6.2.1
See more versions on NVD

CVSS2 => (AV:N/AC:M/Au:N/C:P/I:P/A:P)

CVSS Base Score
Impact Subscore
Exploitability Subscore
6.8/10
6.4/10
8.6/10
Exploit range
Attack complexity
Authentication
Remote
Medium
No required
Confidentiality impact
Integrity impact
Availability impact
Partial
Partial
Partial

 References:
http://www.securityfocus.com/bid/104519
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-firepower-csrf

Related CVE
CVE-2019-1915
A vulnerability in the web-based interface of Cisco Unified Communications Manager, Cisco Unified Communications Manager Session Management Edition (SME), Cisco Unified Communications Manager IM and Presence (Unified CM IM&P) Service, and Cisco U...
CVE-2019-15272
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to bypass security restrictions. The vulnerab...
CVE-2019-15259
A vulnerability in Cisco Unified Contact Center Express (UCCX) Software could allow an unauthenticated, remote attacker to conduct an HTTP response splitting attack. The vulnerability is due to insufficient input validation of some parameters that ar...
CVE-2019-15256
A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an aff...
CVE-2019-12716
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac...
CVE-2019-12715
A vulnerability in the web-based interface of Cisco Unified Communications Manager and Cisco Unified Communications Manager Session Management Edition (SME) could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attac...
CVE-2019-12713
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected so...
CVE-2019-12712
A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of the affected so...

Copyright 2019, cxsecurity.com

 

Back to Top