Vulnerability Name:

CVE-2015-6357 (CCN-108041)

Assigned:2015-11-16
Published:2015-11-16
Updated:2018-10-09
Summary:The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 through 5.4.0.1 does not verify the X.509 certificate of the support.sourcefire.com SSL server, which allows man-in-the-middle attackers to spoof this server and provide an invalid package, and consequently execute arbitrary code, via a crafted certificate, aka Bug ID CSCuw06444.
CVSS v3 Severity:5.6 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L)
5.1 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): Low
Integrity (I): Low
Availibility (A): Low
CVSS v2 Severity:6.8 Medium (CVSS v2 Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
5.1 Medium (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:P/I:P/A:P)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Partial
Integrity (I): Partial
Availibility (A): Partial
Vulnerability Type:CWE-20
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2015-6357

Source: MISC
Type: UNKNOWN
http://packetstormsecurity.com/files/134390/Cisco-FireSIGHT-Management-Center-Certificate-Validation.html

Source: FULLDISC
Type: UNKNOWN
20151117 CVE-2015-6357: Cisco FireSIGHT Management Center SSL Validation Vulnerability

Source: CCN
Type: Cisco Security Advisory cisco-sa-20151116-fmc
Cisco FireSIGHT Management Center Certificate Validation Vulnerability

Source: CISCO
Type: Vendor Advisory
20151116 Cisco FireSIGHT Management Center Certificate Validation Vulnerability

Source: MISC
Type: UNKNOWN
http://wadofstuff.blogspot.com.au/2015/11/cve-2015-6357-firepwner-exploit-for.html

Source: BUGTRAQ
Type: UNKNOWN
20151116 CVE-2015-6357: Cisco FireSIGHT Management Center SSL Validation Vulnerability

Source: SECTRACK
Type: UNKNOWN
1034161

Source: XF
Type: UNKNOWN
cisco-firesight-cve20156357-code-exec(108041)

Source: CCN
Type: Packet Storm Security [11-17-2015]
Cisco FireSIGHT Management Center Certificate Validation

Vulnerable Configuration:Configuration 1:
  • cpe:/a:cisco:firesight_system_software:5.2.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:firesight_system_software:5.3.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:firesight_system_software:5.3.1.1:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:firesight_system_software:5.3.1.2:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:firesight_system_software:5.3.1.5:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:firesight_system_software:5.4.0:*:*:*:*:*:*:*
  • OR cpe:/a:cisco:firesight_system_software:5.4.0.1:*:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    BACK
    cisco firesight system software 5.2.0
    cisco firesight system software 5.3.0
    cisco firesight system software 5.3.1.1
    cisco firesight system software 5.3.1.2
    cisco firesight system software 5.3.1.5
    cisco firesight system software 5.4.0
    cisco firesight system software 5.4.0.1