CVE-2021-34751

Name of the Vulnerable Software and Affected Versions Cisco Firepower Management Center (FMC) Software (affected versions not specified)

Description A vulnerability in the administrative web-based GUI configuration manager of Cisco Firepower Management Center (FMC) Software is related to improper encryption of sensitive information stored within the GUI configuration manager. This could allow an authenticated, remote attacker to access sensitive configuration information. The attacker would require low privilege credentials on an affected device. An attacker could exploit this vulnerability by logging into the GUI of Cisco FMC Software and navigating to certain sensitive configurations. A successful exploit could allow the attacker to view sensitive configuration parameters in clear text.

Recommendations For all affected versions of Cisco Firepower Management Center (FMC) Software, update to the latest software version that addresses this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.