📦 Secure Firewall Management Center
by Cisco
🔍 What is Secure Firewall Management Center?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This critical vulnerability in Cisco Secure Firewall Management Center allows unauthenticated remote attackers to execute arbitrary shell commands with high privileges by sending crafted input during ...
This vulnerability allows authenticated attackers with at least Security Analyst (Read Only) privileges to execute arbitrary commands as root on Cisco Secure Firewall Management Center devices. It aff...
This vulnerability allows authenticated remote attackers to execute unauthorized configuration commands on Firepower Threat Defense devices managed by Cisco Firepower Management Center. Attackers need...
This SQL injection vulnerability in Cisco Firepower Management Center (FMC) allows authenticated attackers with at least Read Only credentials to execute arbitrary SQL queries. Successful exploitation...
This vulnerability allows authenticated remote attackers with valid device credentials (no admin privileges required) to execute arbitrary commands on Cisco Firepower Management Center (FMC) systems. ...
This vulnerability in Cisco Firepower Management Center allows unauthenticated attackers to cause denial of service by overwhelming a logging API, potentially crashing the device. It also enables auth...
This vulnerability in Cisco products with Snort3 configured allows unauthenticated remote attackers to cause denial of service by sending crafted IP packets. The attack causes through traffic to be dr...
This vulnerability allows an authenticated low-privileged remote attacker to bypass authorization and access troubleshoot files from different domains on the same Cisco Secure FMC instance, potentiall...
This vulnerability allows authenticated low-privileged users on Cisco Secure FMC to bypass authorization checks and access reports from different domains managed on the same instance. Attackers can re...
This vulnerability allows authenticated administrators on Cisco Secure Firewall Management Center to execute arbitrary commands as root due to insufficient input validation in HTTP parameters. Only ad...
An unauthenticated cross-site scripting (XSS) vulnerability in Cisco Secure Firewall Management Center (FMC) web interface allows remote attackers to inject malicious scripts. This could lead to sessi...
This vulnerability allows authenticated low-privilege users to view sensitive configuration information in clear text through Cisco Firepower Management Center's web GUI. It affects Cisco FMC Software...
This vulnerability allows authenticated users with custom read-only roles to elevate privileges on Cisco Secure Firewall Management Center devices. Attackers can modify configuration settings they sho...
An authenticated SQL injection vulnerability in Cisco Secure Firewall Management Center (FMC) web interface allows administrators to execute arbitrary SQL queries. This could lead to unauthorized data...
An unauthenticated cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center's web interface allows remote attackers to inject malicious scripts. This could lead to session hijacki...
This stored XSS vulnerability in Cisco FMC's web management interface allows authenticated attackers to inject malicious scripts that execute when other users view affected pages. It affects organizat...
This vulnerability allows authenticated administrators in Cisco Secure Firewall Management Center to execute arbitrary commands as root via crafted HTTP requests due to insufficient input validation. ...
This vulnerability allows authenticated remote attackers to read arbitrary files from the underlying operating system of Cisco Secure Firewall Management Center (FMC) Software. Attackers need valid us...
This CVE describes a cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center's web interface that allows authenticated attackers to inject malicious scripts. When exploited, it c...
This vulnerability allows authenticated remote attackers with Network Administrator privileges to execute arbitrary operating system commands on Cisco Secure Firewall Management Center devices. Attack...
This CVE describes a cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center's web interface that allows authenticated attackers to inject malicious scripts. When exploited, it e...
An unauthenticated cross-site scripting (XSS) vulnerability in Cisco Firepower Management Center's web interface allows remote attackers to inject malicious scripts. This could lead to session hijacki...