漏洞标题
N/A
漏洞描述信息
Cisco FirePower系统软件中的TCP处理漏洞可能导致未授权的远程攻击者下载 normally 被阻止的文件。受影响的产品:以下 Cisco 产品是 vulnerable: 自适应安全家电(ASA)5500-X系列,提供火攻服务;网络-7000系列家电;网络-8000系列家电;火攻7000系列家电,火攻8000系列家电;集成服务路由器(ISR)火攻威胁防御;蓝色Coat X-系列 Next Generation 入侵预防系统(NGIPS);Sourcefire 3D System Appliances;虚拟机的虚拟 Next-Generation 入侵预防系统(NGIPSv)。更多信息:CSCvb20102。已知受影响的发布版本:2.9.7.10。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
A vulnerability in TCP processing in Cisco FirePOWER system software could allow an unauthenticated, remote attacker to download files that would normally be blocked. Affected Products: The following Cisco products are vulnerable: Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services, Advanced Malware Protection (AMP) for Networks - 7000 Series Appliances, Advanced Malware Protection (AMP) for Networks - 8000 Series Appliances, FirePOWER 7000 Series Appliances, FirePOWER 8000 Series Appliances, FirePOWER Threat Defense for Integrated Services Routers (ISRs), Next Generation Intrusion Prevention System (NGIPS) for Blue Coat X-Series, Sourcefire 3D System Appliances, Virtual Next-Generation Intrusion Prevention System (NGIPSv) for VMware. More Information: CSCvb20102. Known Affected Releases: 2.9.7.10.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Cisco Firepower System Software 安全漏洞
漏洞描述信息
Cisco Firepower System Software是美国思科(Cisco)公司的一款下一代防火墙产品(NGFW)。TCP是其中的一个网络传输协议。 Cisco Firepower System Software中的TCP处理过程存在安全漏洞。远程攻击者可借助特制的HTTP利用该漏洞诱骗用户下载恶意文件,绕过恶意文件保护机制。以下设备受到影响:Adaptive Security Appliance (ASA) 5500-X Series with FirePOWER Services;Advan
CVSS信息
N/A
漏洞类别
其他