Information Disclosure in Cisco FireSIGHT Management Center
CVE-2015-6419

Currently unrated

Key Information:

Vendor: Cisco
Status: Firesight System Software
Vendor: CVE Published:; 12 December 2015

Summary

The vulnerability allows remote authenticated users to access sensitive files on the Cisco FireSIGHT Management Center through manipulated GET requests. This could lead to unauthorized access to critical information, posing a potential risk to the integrity and confidentiality of data managed by the system. Administrators should apply patches or workarounds provided by Cisco to mitigate this risk.

References

http://www.securityfocus.com/bid/79033

vdb-entryx_refsource_BID

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Dec 12, 2015
Vulnerability Reserved
Aug 17, 2015