VYPR

Firepower Management Center (FMC) Software

by Cisco Systems, Inc.

CVEs (154)

  • CVE-2025-20265CriAug 14, 2025
    risk 0.66cvss 10.0epss 0.14

    A vulnerability in the RADIUS subsystem implementation of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to inject arbitrary shell commands that are executed by the device. This vulnerability is due to a lack of…

  • CVE-2023-20048CriNov 1, 2023
    risk 0.66cvss 9.9epss 0.16

    A vulnerability in the web services interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute certain unauthorized configuration commands on a Firepower Threat Defense (FTD) device that is managed by the FMC Software.…

  • CVE-2016-6433HigOct 6, 2016
    risk 0.66cvss 8.8epss 0.76

    The Threat Management Console in Cisco Firepower Management Center 5.2.0 through 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872.

  • CVE-2024-20424CriOct 23, 2024
    risk 0.64cvss 9.9epss 0.01

    A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software, formerly Firepower Management Center Software, could allow an authenticated, remote attacker to execute arbitrary commands on the underlying operating system as…

  • CVE-2019-16028CriSep 23, 2020
    risk 0.64cvss 9.8epss 0.03

    A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) could allow an unauthenticated, remote attacker to bypass authentication and execute arbitrary actions with administrative privileges on an affected device. The vulnerability is due…

  • CVE-2020-3318CriMay 6, 2020
    risk 0.64cvss 9.8epss 0.01

    Multiple vulnerabilities in Cisco Firepower Management Center (FMC) Software and Cisco Firepower User Agent Software could allow an attacker to access a sensitive part of an affected system with a high-privileged account. For more information about these vulnerabilities, see the…

  • CVE-2016-6394CriSep 12, 2016
    risk 0.59cvss 9.1epss 0.01

    Session fixation vulnerability in Cisco Firepower Management Center and Cisco FireSIGHT System Software through 6.1.0 allows remote attackers to hijack web sessions via a session identifier, aka Bug ID CSCuz80503.

  • CVE-2024-20360HigMay 22, 2024
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to conduct SQL injection attacks on an affected system. This vulnerability exists because the web-based management interface…

  • CVE-2019-12689HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    A vulnerability in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary code on the underlying operating system of an affected device. The vulnerability is due to insufficient…

  • CVE-2019-12688HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability…

  • CVE-2019-12687HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    A vulnerability in the web UI of the Cisco Firepower Management Center (FMC) could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. The vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability…

  • CVE-2019-12686HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12685HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12684HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12683HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12682HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12681HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12680HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2019-12679HigOct 2, 2019
    risk 0.57cvss 8.8epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an authenticated, remote attacker to execute arbitrary SQL injections on an affected device. These vulnerabilities exist due to improper input…

  • CVE-2018-0365HigJun 21, 2018
    risk 0.57cvss 8.8epss 0.01

    A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to…

Page 1 of 8

VYPR — Vulnerability Intelligence