PT-2016-6908 · Cisco · Cisco Firepower Management Center

Matt Bergin

+1

·

Publicado

2016-10-06

·

Atualizado

2024-11-26

·

CVE-2016-6434

CVSS v3.1

7.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Cisco Firepower Management Center version 6.0.1
Description The issue allows local users to obtain sensitive information by leveraging CLI access due to hardcoded database credentials.
Recommendations For Cisco Firepower Management Center version 6.0.1, update the system to remove hardcoded database credentials to prevent unauthorized access.

Exploit

Correção

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

CVE-2016-6434

Produtos afetados

Cisco Firepower Management Center