Cisco Firepower System Software CVE-2018-15443 Security Bypass Vulnerability

Bugtraq ID:	105870
Class:	Boundary Condition Error
CVE:	CVE-2018-15443
Remote:	Yes
Local:	No
Published:	Nov 07 2018 12:00AM
Updated:	Nov 07 2018 12:00AM
Credit:	The vendor reported this issue.
Vulnerable:	Cisco Firepower System Software 0
Not Vulnerable:

Cisco Firepower System Software CVE-2018-15443 Security Bypass Vulnerability

Cisco Firepower System Software is prone to a security-bypass vulnerability.

Remote attackers can exploit this issue to bypass security restrictions and perform unauthorized actions. This may aid in further attacks.

This issue is being tracked by Cisco Bug IDs CSCvk76547.

Cisco Firepower System Software CVE-2018-15443 Security Bypass Vulnerability

Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].

Cisco Firepower System Software CVE-2018-15443 Security Bypass Vulnerability

Solution:
Updates are available. Please see the references or vendor advisory for more information.

Cisco Firepower System Software CVE-2018-15443 Security Bypass Vulnerability

References:

• Cisco Homepage (Cisco )
  
• cisco-sa-20181107-fde-tcp-bypass: Cisco Firepower Detection Engine TCP Intrusion (Cisco)