A vulnerability in Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 1000, 2100, 3100, and 4200 Series could allow an unauthenticated, local attacker to access an affected system using static credentials. This vulnerability is due to the presence of static accounts with hard-coded passwords on an affected system. An attacker could exploit this vulnerability by logging in to the CLI of an affected device with these credentials. A successful exploit could allow the attacker to access the affected system and retrieve sensitive information, perform limited troubleshooting actions, modify some configuration options, or render the device unable to boot to the operating system, requiring a reimage of the device.
CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCisco Firepower 1000
HWCiscowszystkie wersjeCisco Firepower 1010
HWCiscowszystkie wersjeCisco Firepower 1020
HWCiscowszystkie wersjeCisco Firepower 1030
HWCiscowszystkie wersjeCisco Firepower 1040
HWCiscowszystkie wersjeCisco Firepower 1120
HWCiscowszystkie wersjeCisco Firepower 1140
HWCiscowszystkie wersjeCisco Firepower 1150
HWCiscowszystkie wersjeCisco Firepower 2100
HWCiscowszystkie wersjeCisco Firepower 2110
HWCiscowszystkie wersjeCisco Firepower 2120
HWCiscowszystkie wersjeCisco Firepower 2130
HWCiscowszystkie wersjeCisco Firepower 2140
HWCiscowszystkie wersjeCisco Firepower 3105
HWCiscowszystkie wersjeCisco Firepower 3110
HWCiscowszystkie wersjeCisco Firepower 3120
HWCiscowszystkie wersjeCisco Firepower 3130
HWCiscowszystkie wersjeCisco Firepower 3140
HWCiscowszystkie wersjeCisco Firepower 4215
HWCiscowszystkie wersjeCisco Firepower 4225
HWCiscowszystkie wersjeCisco Firepower 4245
HWCiscowszystkie wersjeCisco Firepower Threat Defense
APPCisco7.1.07.1.0.17.1.0.27.1.0.37.2.07.2.0.17.2.17.2.27.2.37.2.47.2.4.17.2.57.2.5.17.2.5.27.2.6+ 8 więcej
Related vulnerabilities
RCE jako root w Cisco ASA i FTD poprzez podatny serwer VPN web
RCE w web services Cisco ASA, FTD, IOS, IOS XE, IOS XR przez HTTP
A vulnerability in the packaging of Cisco Adaptive Security Device Manager (ASDM) images and the validation of...
A vulnerability in the web services interface of Cisco Adaptive Security Appliance (ASA) Software and Cisco Fi...
A vulnerability in the Secure Sockets Layer (SSL) VPN functionality of the Cisco Adaptive Security Appliance (...