CVE-2015-6411

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2015-6411
Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides verbose responses to requests for help files, which allows remote attackers to obtain potentially sensitive version information by reading an unspecified field, aka Bug ID CSCux37061.

5.0 /10

CVSS v2.0 : MEDIUM

V2 Legend

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References
Link Resource
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-fmc Vendor Advisory
http://www.securityfocus.com/bid/78740
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-fmc Vendor Advisory
http://www.securityfocus.com/bid/78740
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.3:*:*:*:*:*:*:*
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.1:*:*:*:*:*:*:*
History

26 Nov 2024, 16:09

Type Values Removed Values Added
CPE cpe:2.3:a:cisco:firepower_management_center:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:firepower_management_center:5.4.1.3:*:*:*:*:*:*:*		 cpe:2.3:a:cisco:secure_firewall_management_center:6.0.0:*:*:*:*:*:*:*
cpe:2.3:a:cisco:secure_firewall_management_center:6.0.1:*:*:*:*:*:*:*
cpe:2.3:a:cisco:secure_firewall_management_center:5.4.1.3:*:*:*:*:*:*:*
First Time Cisco secure Firewall Management Center

21 Nov 2024, 02:34

Type Values Removed Values Added
References () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-fmc - Vendor Advisory () http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151209-fmc - Vendor Advisory
References () http://www.securityfocus.com/bid/78740 - () http://www.securityfocus.com/bid/78740 -
Information

Published : 2015-12-15 05:59

Updated : 2025-04-12 10:46

NVD link : CVE-2015-6411

Mitre link : CVE-2015-6411

CVE.ORG link : CVE-2015-6411

JSON object : View

Products Affected

cisco

  • secure_firewall_management_center
CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor