CVE-2017-3814

5.8MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Firepower System Software 5.x 6.x
Vendor: CVE Published:; 3 February 2017

Summary

A vulnerability in Cisco Firepower System Software could allow an unauthenticated, remote attacker to maliciously bypass the appliance's ability to block certain web content, aka a URL Bypass. More Information: CSCvb93980. Known Affected Releases: 5.3.0 5.4.0 6.0.0 6.0.1 6.1.0.

Affected Version(s)

Cisco Firepower System Software 5.x 6.x Cisco Firepower System Software 5.x 6.x

References

https://tools.cisco.com/security/center/content/CiscoSecu...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/95942

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.8

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Changed

Timeline

Vulnerability published
Feb 3, 2017
Vulnerability Reserved
Dec 21, 2016