CVE-2015-4287

Name of the Vulnerable Software and Affected Versions Cisco Firepower Extensible Operating System version 1.1(1.86)

Description The issue is related to inadequate access control in the Cisco Firepower Extensible Operating System, allowing remote attackers to bypass intended access restrictions. This can lead to the disclosure of sensitive device information when an unspecified web page is visited.

Recommendations For Cisco Firepower Extensible Operating System version 1.1(1.86), consider restricting access to the device until a fix is available to prevent exploitation. As a temporary workaround, limit the exposure of the device to unauthorized access. At the moment, there is no information about a newer version that contains a fix for this vulnerability.