| Vulnerability Name: | CVE-2015-6411 (CCN-108880) | ||||||||
| Assigned: | 2015-12-09 | ||||||||
| Published: | 2015-12-09 | ||||||||
| Updated: | 2016-11-28 | ||||||||
| Summary: | Cisco FirePOWER Management Center 5.4.1.3, 6.0.0, and 6.0.1 provides verbose responses to requests for help files, which allows remote attackers to obtain potentially sensitive version information by reading an unspecified field, aka Bug ID CSCux37061. | ||||||||
| CVSS v3 Severity: | 5.3 Medium (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N) 4.6 Medium (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:U/RL:O/RC:C)
| ||||||||
| CVSS v2 Severity: | 5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N)
| ||||||||
| Vulnerability Type: | CWE-200 | ||||||||
| Vulnerability Consequences: | Obtain Information | ||||||||
| References: | Source: MITRE Type: CNA CVE-2015-6411 Source: CCN Type: Cisco Security Advisory cisco-sa-20151209-fmc Cisco FirePOWER Management Center Software Version Information Disclosure Vulnerability Source: CISCO Type: Vendor Advisory 20151209 Cisco FirePOWER Management Center Software Version Information Disclosure Vulnerability Source: BID Type: UNKNOWN 78740 Source: CCN Type: BID-78740 Cisco FirePOWER Management Center Software CVE-2015-6411 Information Disclosure Vulnerability Source: XF Type: UNKNOWN cisco-firepower-cve20156411-info-disc(108880) | ||||||||
| Vulnerable Configuration: | Configuration 1: Configuration CCN 1:  Denotes that component is vulnerable | ||||||||
| BACK | |||||||||