Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Firepower Threat Defense Software Management Access List Bypass Vulnerability
Vulnerability Description
A vulnerability in the management access list configuration of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured management interface access list on an affected system. The vulnerability is due to the configuration of different management access lists, with ports allowed in one access list and denied in another. An attacker could exploit this vulnerability by sending crafted remote management traffic to the local IP address of an affected system. A successful exploit could allow the attacker to bypass the configured management access list policies, and traffic to the management interface would not be properly denied.
CVSS Information
N/A
Vulnerability Type
访问控制不恰当
Vulnerability Title
Cisco Firepower Threat Defense 访问控制错误漏洞
Vulnerability Description
Cisco Firepower Threat Defense(FTD)是美国思科(Cisco)公司的一套提供下一代防火墙服务的统一软件。 Cisco FTD 6.3.0版本、6.4.0版本和6.5.0版本中存在访问控制错误漏洞,该漏洞源于配置了不同的管理访问列表,一个访问列表中所允许访问的端口在另一个访问列表中则被禁止。攻击者可通过将特制的远程管理流量发送到受影响系统的本地IP地址利用该漏洞绕过已配置的管理接口访问列表。
CVSS Information
N/A
Vulnerability Type
N/A