CVE-2020-3302

Name of the Vulnerable Software and Affected Versions Cisco Firepower Management Center (affected versions not specified)

Description The issue is due to insufficient input validation in the web UI of the software, allowing an authenticated, remote attacker to overwrite files on the file system of an affected device by uploading a specially crafted file. This could be done through the web UI on an affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.