First published: Wed Oct 02 2019(Updated: )
A vulnerability in the file and malware inspection feature of Cisco Firepower Management Center (FMC) Software could allow an unauthenticated, remote attacker to bypass the file and malware inspection policies on an affected system. The vulnerability exists because the affected software insufficiently validates incoming traffic. An attacker could exploit this vulnerability by sending a crafted HTTP request through an affected device. A successful exploit could allow the attacker to bypass the file and malware inspection policies and send malicious traffic through the affected device.
Credit: ykramarz@cisco.com ykramarz@cisco.com
Affected Software | Affected Version | How to fix |
---|---|---|
Cisco Firepower Management Center | ||
Cisco Vdb Fingerprint Database | <327 | |
Cisco Secure Firewall Management Center |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-12701 is a vulnerability in the file and malware inspection feature of Cisco Firepower Management Center (FMC) Software.
The severity of CVE-2019-12701 is medium, with a severity value of 5.8.
CVE-2019-12701 allows an unauthenticated, remote attacker to bypass the file and malware inspection policies on an affected system.
The affected software of CVE-2019-12701 includes Cisco Firepower Management Center (FMC) Software and Cisco Vdb Fingerprint Database.
To fix CVE-2019-12701, it is recommended to apply the necessary updates and patches provided by Cisco.