PT-2016-6908 · Cisco · Cisco Firepower Management Center
Matt Bergin
+1
·
Published
2016-10-06
·
Updated
2024-11-26
·
CVE-2016-6434
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Cisco Firepower Management Center version 6.0.1
Description
The issue allows local users to obtain sensitive information by leveraging CLI access due to hardcoded database credentials.
Recommendations
For Cisco Firepower Management Center version 6.0.1, update the system to remove hardcoded database credentials to prevent unauthorized access.
Exploit
Fix
Improper Authentication
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Firepower Management Center