CVE-2019-12682

Name of the Vulnerable Software and Affected Versions Cisco Firepower Management Center (FMC) Software (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software. These vulnerabilities are caused by improper input validation, allowing an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. An attacker could exploit these vulnerabilities by sending crafted SQL queries to an affected device. A successful exploit could allow the attacker to view unauthorized information, make unauthorized changes to the system, and execute commands within the underlying operating system, potentially affecting the device's availability.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.