CVE-2020-3311

Name of the Vulnerable Software and Affected Versions Cisco Firepower Management Center (FMC) Software (affected versions not specified)

Description The issue is related to improper input validation of HTTP request parameters in the web interface, allowing an unauthenticated, remote attacker to redirect a user to a malicious web page by intercepting and modifying an HTTP request. This could be due to improper restriction of XML external entities. A successful exploit could allow the attacker to redirect the user to a specific malicious web page.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.