Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the transfer of files to an affected system via FTP. The vulnerability exists because the affected software incorrectly handles FTP control connections. An attacker could exploit this vulnerability by sending a maliciously crafted FTP connection to transfer a file to an affected device. A successful exploit could allow the attacker to bypass a file policy that is configured to apply the Block upload with reset action to FTP traffic. Cisco Bug IDs: CSCvh70130.
CVSS Information
N/A
Vulnerability Type
保护机制失效
Vulnerability Title
Cisco FireSIGHT System Software检测引擎安全漏洞
Vulnerability Description
Cisco FireSIGHT System Software是美国思科(Cisco)公司的一套管理中心软件,它支持集中管理采用FirePOWER Services的Cisco ASA和思科FirePOWER网络安全设备的网络安全和运行功能的软件。 Cisco FireSIGHT System Software中的检测引擎存在安全漏洞,该漏洞源于受影响软件没有正确的处理FTP控制连接。远程攻击者可通过发送恶意制作的FTP连接来向受影响设备传递文件利用该漏洞绕过用于阻止通过FTP进行文件传输的文件策略。
CVSS Information
N/A
Vulnerability Type
N/A