Boletines de Vulnerabilidades

Cisco Firepower Management Center Software Log API Denial of Service Vulnerability

Información sobre el sistema

Software afectado Cisco


A vulnerability in a logging API in Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to cause the device to become unresponsive or trigger an unexpected reload. This vulnerability could also allow an attacker with valid user credentials, but not Administrator privileges, to view a system log file that they would not normally have access to. This vulnerability is due to a lack of rate-limiting of requests that are sent to a specific API that is

More info:

Identificadores estándar

Propiedad Valor
CVE CVE-2023-20155.

Histórico de versiones

Versión Comentario Fecha

Miembros de

Ministerio de Defensa