Cisco Firepower 9000 Series unauthenticated web Vulnerability (CVE-2015-4287)
Cisco Firepower 9000 Series unauthenticated web Vulnerability (CVE-2015-4287)
Release date:
Updated on:
Affected Systems:
Cisco Firepower
Description:
CVE (CAN) ID: CVE-2015-4287
Cisco Firepower is a series of advanced firewall products.
On a Firepower 9000 device, Cisco Firepower Extensible Operating System 1.1 (1.86) has a security vulnerability in the implementation of Web interfaces, unauthenticated remote attackers can exploit this vulnerability to access restricted webpages on the target device.
<* Source: Cisco
*>
Suggestion:
Vendor patch:
Cisco
-----
Currently, the vendor does not provide patches or upgrade programs. We recommend that users who use the software follow the vendor's homepage to obtain the latest version:
Http://tools.cisco.com/security/center/viewAlert.x? AlertId = 40136
This article permanently updates the link address: