Guest

Preview Tool

Cisco Bug: CSCut67078 - Cisco FireSIGHT Management Center Dashboard Deletion Vulnerability

Last Modified

Feb 06, 2017

Products (10)

  • Cisco Firepower Management Center
  • Sourcefire Defense Center 1000 Chassis
  • Sourcefire Defense Center 500 Chassis
  • Cisco FireSIGHT Management Center 750
  • Cisco FireSIGHT Management Center 1500
  • Cisco FireSIGHT Management Center 3500
  • Cisco Firepower Management Center 4000
  • Sourcefire Defense Center 3000 Chassis
  • Cisco Firepower Management Center Virtual Appliance
  • Sourcefire Virtual Defense Center

Known Affected Releases

5.3.1.3 6.0.0

Description (partial)

Symptoms:
A vulnerability in management interface used to delete Virtual Private Networks (VPNs) of the Cisco FireSIGHT
Management Center could allow an authenticated, remote attacker with limited user permissions to delete
another user's VPN dashboard .

The vulnerability is due to failing to properly validate the deletion request. An attacker could exploit this vulnerability
by tampering with a management session and modifying the deletion request. An exploit could allow the attacker
to delete dashboards which the user account should not be able to modify.

Conditions:
The application running with default configuration running an affected version of software.
Bug details contain sensitive information and therefore require a Cisco.com account to be viewed.

Bug Details Include

  • Full Description (including symptoms, conditions and workarounds)
  • Status
  • Severity
  • Known Fixed Releases
  • Related Community Discussions
  • Number of Related Support Cases
Bug information is viewable for customers and partners who have a service contract. Registered users can view up to 200 bugs per month without a service contract.