Lucene search
CiscoCVE-2015-4242HistoryJul 08, 2015 - 2:59 p.m.
CVE-2015-4242
2015-07-0814:59:02
CWE-352
cisco
web.nvd.nist.gov
38
cve-2015-4242
cross-site request forgery
csrf vulnerability
cisco firesight
bug id cscuu94721
nvd
information security
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.001
Percentile
32.7%
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 5.4.1.2 and 6.0.0 in FireSIGHT Management Center allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu94721.
Affected configurations
Node
ciscofiresight_system_softwareMatch5.4.1.2
ORciscofiresight_system_softwareMatch6.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | firesight_system_software | 5.4.1.2 | cpe:2.3:a:cisco:firesight_system_software:5.4.1.2:*:*:*:*:*:*:* |
| cisco | firesight_system_software | 6.0.0 | cpe:2.3:a:cisco:firesight_system_software:6.0.0:*:*:*:*:*:*:* |
Related
cisco
cisco
Cisco FireSIGHT Management Center Cross-Site Request Forgery Vulnerability
2015-07-07 20:20:23
cvelist
cvelist
CVE-2015-4242
2015-07-08 14:00:00
prion
prion
Cross site request forgery (csrf)
2015-07-08 14:59:00
nvd
nvd
CVE-2015-4242
2015-07-08 14:59:02
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.4
Confidence
Low
EPSS
0.001
Percentile
32.7%
Related for CVE-2015-4242