Lucene search
HistoryJul 08, 2015 - 2:59 p.m.
CVE-2015-4242
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
32.7%
Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 5.4.1.2 and 6.0.0 in FireSIGHT Management Center allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu94721.
Affected configurations
Node
ciscofiresight_system_softwareMatch5.4.1.2
ORciscofiresight_system_softwareMatch6.0.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | firesight_system_software | 5.4.1.2 | cpe:2.3:a:cisco:firesight_system_software:5.4.1.2:*:*:*:*:*:*:* |
| cisco | firesight_system_software | 6.0.0 | cpe:2.3:a:cisco:firesight_system_software:6.0.0:*:*:*:*:*:*:* |
Related
cisco
cisco
Cisco FireSIGHT Management Center Cross-Site Request Forgery Vulnerability
2015-07-07 20:20:23
prion
prion
Cross site request forgery (csrf)
2015-07-08 14:59:00
cvelist
cvelist
CVE-2015-4242
2015-07-08 14:00:00
cve
cve
CVE-2015-4242
2015-07-08 14:59:02
CVSS2
6.8
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:N/C:P/I:P/A:P
AI Score
7.2
Confidence
High
EPSS
0.001
Percentile
32.7%
Related for NVD:CVE-2015-4242