NVD

Id
21194  
Name
CVE-2016-6420  
Description
Cisco FireSIGHT System Software 4.10.3 through 5.4.0 in Firepower Management Center allows remote authenticated users to bypass authorization checks and gain privileges via a crafted HTTP request, aka Bug ID CSCur25467.  
Reject
 
CVSS Version
2  
CVSS Score
6.8  
Severity
Medium  
CVSS Base Score
6.8  
CVSS Impact Subscore
6.9  
CVSS Exploit Subscore
8  
CVSS Vector
(AV:N/AC:L/Au:S/C:C/I:N/A:N)  
Pub Date
2017-01-19  
Published
2016-10-05  
Modified Date
2016-11-28  
Seq
2016-6420  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
115213 21194 CVE-2016-6420 20160928 Cisco Firepower Management Center Privilege Escalation Vulnerability  View
115214 21194 CVE-2016-6420 93204  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
4336 JVNDB-2016-005109 Cisco FirePOWER Management Center の FireSIGHT システム ソフトウェアにおける認証チェックを回避される脆弱性 Cisco FirePOWER Management Center の FireSIGHT システム ソフトウェアには、認証チェックを回避され、権限を取得される脆弱性が存在します。 CVE-2016-6420 92927 CVE-2016-6420 21194 6.8 6.5 http://jvndb.jvn.jp/ja/contents/2016/JVNDB-2016-005109.html 2016-09-28 2016-10-06 View