HTTP: Cisco Firepower UserAdd Remote Code Execution
The Threat Management Console in Cisco Firepower Management Center allows remote authenticated users to execute arbitrary commands via crafted web-application parameters.
Extended Description
The Threat Management Console in Cisco Firepower Management Center 5.2.0 through 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872.
Affected Products
Cisco secure_firewall_management_center
References
BugTraq: 93414
CVE: CVE-2016-6433
URL: https://blog.korelogic.com/blog/2016/10/10/virtual_appliance_spelunking
Short Name
HTTP:CISCO:CISCO-FIREPOWER-RCE
Severity
Critical
Recommended
True
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2016-6433 Cisco Code Execution Firepower Remote UserAdd bid:93414
Release Date
10/24/2017
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Cisco
CVSS Score
9.0