NVD

Id
27362  
Name
CVE-2015-6427  
Description
Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.  
Reject
 
CVSS Version
2  
CVSS Score
5  
Severity
Medium  
CVSS Base Score
5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
10  
CVSS Vector
(AV:N/AC:L/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-19  
Published
2015-12-18  
Modified Date
2016-12-07  
Seq
2015-6427  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
143945 27362 CVE-2015-6427 20151217 Cisco FireSIGHT Management Center SSL HTTP Attack Detection Vulnerability  View
143946 27362 CVE-2015-6427 1034488  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
11158 JVNDB-2015-006478 Cisco FireSIGHT Management Center における HTTP 攻撃検出機能を回避される脆弱性 Cisco FireSIGHT Management Center には、HTTP 攻撃検出機能を回避され、Snort IDS ルールの誘発を回避される脆弱性が存在します。 CVE-2015-6427 83652 CVE-2015-6427 27362 5 http://jvndb.jvn.jp/ja/contents/2015/JVNDB-2015-006478.html 2015-12-17 2015-12-21 View