CVE-2018-0365
high-risk
Published 2018-06-21
A vulnerability in the web-based management interface of Cisco Firepower Management Center could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on an affected device. The vulnerability is due to insufficient CSRF protections for the web-based management interface of the affected device. An attacker could exploit this vulnerability by persuading a user of the interface to follow a malicious link. A successful exploit could allow the attacker to perform arbitrary actions on the targeted device via a web browser and with the privileges of the user. Cisco Bug IDs: CSCvb19750.
Do I need to act?
-
0.19% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
8
CVSS 8.8/10
High
NETWORK
/ LOW complexity
Affected Products (20)
Firepower Appliance 8360 Firmware
Firepower Appliance 8360 Firmware
Firepower Appliance 8360 Firmware
Firepower Appliance 8360 Firmware
Firepower Appliance 8360 Firmware
Firepower Appliance 8360 Firmware
Firepower Management Center 2500 Firmware
Firepower Management Center 2500 Firmware
Firepower Management Center 2500 Firmware
Firepower Management Center 2500 Firmware
Firepower Management Center 2500 Firmware
Firepower Management Center 2500 Firmware
Firepower Appliance 8120 Firmware
Firepower Appliance 8120 Firmware
Affected Vendors
References (4)
Third Party Advisory
http://www.securityfocus.com/bid/104519
Third Party Advisory
http://www.securityfocus.com/bid/104519
64
/ 100
high-risk
Severity
30/34 · Critical
Exploitability
1/34 · Minimal
Exposure
33/34 · Critical