What is the severity of CVE-2016-9193?

CVE-2016-9193 has a moderate severity rating as it allows unauthenticated remote attackers to bypass malware detection.

Which products are affected by CVE-2016-9193?

CVE-2016-9193 affects multiple versions of Cisco Firepower Management Center and Cisco FireSIGHT System Software.

What kind of attack can exploit CVE-2016-9193?

CVE-2016-9193 can be exploited to bypass malware detection mechanisms, potentially allowing malicious activity on the affected system.

Is authentication required to exploit CVE-2016-9193?

No, CVE-2016-9193 can be exploited by an unauthenticated remote attacker.

Vulnerability/
CVE-2016-9193

high

7.5

CWE

14/12/2016

26/11/2024

CVE-2016-9193: Input Validation

First published: Wed Dec 14 2016(Updated: )

A vulnerability in the malicious file detection and blocking features of Cisco Firepower Management Center and Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass malware detection mechanisms on an affected system. Affected Products: Cisco Firepower Management Center and FireSIGHT System Software are affected when they are configured to use a file policy that has the Block Malware action. More Information: CSCvb27494. Known Affected Releases: 6.0.1.1 6.1.0.

Credit: ykramarz@cisco.com ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco FireSIGHT System Software	=6.0.0
Cisco FireSIGHT System Software	=6.0.0.0
Cisco FireSIGHT System Software	=6.0.0.1
Cisco FireSIGHT System Software	=6.0.1
Cisco FireSIGHT System Software	=6.0.1.1
Cisco FireSIGHT System Software	=6.1.0
Cisco Secure Firewall Management Center	=6.0.0
Cisco Secure Firewall Management Center	=6.0.0.0
Cisco Secure Firewall Management Center	=6.0.0.1
Cisco Secure Firewall Management Center	=6.0.1
Cisco Secure Firewall Management Center	=6.0.1.1
Cisco Secure Firewall Management Center	=6.1.0
Cisco Firepower Management Center Software	=6.0.0
Cisco Firepower Management Center Software	=6.0.0.0
Cisco Firepower Management Center Software	=6.0.0.1
Cisco Firepower Management Center Software	=6.0.1
Cisco Firepower Management Center Software	=6.0.1.1
Cisco Firepower Management Center Software	=6.1.0

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-9193?
CVE-2016-9193 has a moderate severity rating as it allows unauthenticated remote attackers to bypass malware detection.
How do I fix CVE-2016-9193?
To fix CVE-2016-9193, upgrade Cisco Firepower Management Center and FireSIGHT System Software to the latest version as recommended by Cisco.
Which products are affected by CVE-2016-9193?
CVE-2016-9193 affects multiple versions of Cisco Firepower Management Center and Cisco FireSIGHT System Software.
What kind of attack can exploit CVE-2016-9193?
CVE-2016-9193 can be exploited to bypass malware detection mechanisms, potentially allowing malicious activity on the affected system.
Is authentication required to exploit CVE-2016-9193?
No, CVE-2016-9193 can be exploited by an unauthenticated remote attacker.

agent/type
collector/mitre-cve
source/MITRE
agent/weakness
agent/severity
agent/references
agent/first-publish-date
agent/description
collector/nvd-api
source/NVD
agent/software-canonical-lookup
agent/last-modified-date
agent/author
agent/event
agent/softwarecombine
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/cisco
canonical/cisco firesight system software
version/cisco firesight system software/6.0.0
version/cisco firesight system software/6.0.0.0
version/cisco firesight system software/6.0.0.1
version/cisco firesight system software/6.0.1
version/cisco firesight system software/6.0.1.1
version/cisco firesight system software/6.1.0
canonical/cisco secure firewall management center
version/cisco secure firewall management center/6.0.0
version/cisco secure firewall management center/6.0.0.0
version/cisco secure firewall management center/6.0.0.1
version/cisco secure firewall management center/6.0.1
version/cisco secure firewall management center/6.0.1.1
version/cisco secure firewall management center/6.1.0
canonical/cisco firepower management center software
version/cisco firepower management center software/6.0.0
version/cisco firepower management center software/6.0.0.0
version/cisco firepower management center software/6.0.0.1
version/cisco firepower management center software/6.0.1
version/cisco firepower management center software/6.0.1.1
version/cisco firepower management center software/6.1.0

CVE-2016-9193: Input Validation

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2016-9193?

How do I fix CVE-2016-9193?

Which products are affected by CVE-2016-9193?

What kind of attack can exploit CVE-2016-9193?

Is authentication required to exploit CVE-2016-9193?

Company

Resources

Contact