URL-Based Access Control Bypass in Cisco FireSIGHT System Software
CVE-2018-0384

5.8MEDIUM

Key Information:

Vendor
Cisco
Status
Cisco Firesight Unknown
Vendor
CVE Published:
16 July 2018

Summary

A vulnerability exists in Cisco FireSIGHT System Software where an unauthenticated, remote attacker can bypass URL-based access control policies. This occurs due to improper handling of TCP packets that arrive out of order following TCP SYN retransmissions. An attacker might exploit this flaw by sending specially crafted connections through a compromised device, potentially allowing them to circumvent security measures designed to block unwanted traffic.

Affected Version(s)

Cisco FireSIGHT unknown Cisco FireSIGHT unknown

References

http://www.securityfocus.com/bid/104725
vdb-entryx_refsource_BID
https://tools.cisco.com/security/center/content/CiscoSecu...
x_refsource_CONFIRM
http://www.securitytracker.com/id/1041284
vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:
5.8
Severity:
MEDIUM
Confidentiality:
None
Integrity:
Low
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Changed

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.