PT-2015-7236 · Cisco · Cisco Firepower Management Center
Published
2015-12-15
·
Updated
2024-11-26
·
CVE-2015-6411
CVSS v2.0
5.0
Medium
| Vector | AV:N/AC:L/Au:N/C:P/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Cisco FirePOWER Management Center versions 5.4.1.3, 6.0.0, and 6.0.1
Description
The issue allows remote attackers to obtain potentially sensitive version information by reading an unspecified field. This occurs because the Cisco FirePOWER Management Center provides verbose responses to requests for help files.
Recommendations
For version 5.4.1.3, update to a version that does not provide verbose responses to help file requests.
For version 6.0.0, update to a version that does not provide verbose responses to help file requests.
For version 6.0.1, update to a version that does not provide verbose responses to help file requests.
Fix
Information Disclosure
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Firepower Management Center