QID 317381
Date Published: 2023-11-09
QID 317381: Cisco Firepower Management Center (FMC) Software Denial of Service (DoS) Vulnerability (cisco-sa-fmc-logview-dos-AYJdeX55)
A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to cause the device to become unresponsive or trigger an unexpected reload. This vulnerability could also allow an attacker with valid user credentials, but not Administrator privileges, to view a system log file that they would not normally have access to.
Affected Products
From 6.2.3 prior to 6.4.0.17
From 6.5.0 prior to 7.0.6
From 7.1.0 prior to 7.2.4
From 7.3.0 prior to 7.4.0
Note: This QID does not check if Cisco FMC Software is in the default configuration.
QID Detection Logic (Authenticated):
This QID will check the version retrieved via Unix Auth using "show version" command.
A successful exploit could allow the attacker to cause a denial of service (DoS) condition due to the FMC CPU spiking to 100 percent utilization or to the device reloading.
Customers are advised to refer to cisco-sa-fmc-logview-dos-AYJdeX55 for more information.
- cisco-sa-fmc-logview-dos-AYJdeX55 -
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-logview-dos-AYJdeX55
CVEs related to QID 317381
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-fmc-logview-dos-AYJdeX55 |
sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-logview-dos-AYJdeX55 |