What is the vulnerability ID?

The vulnerability ID is CVE-2021-34763.

What is the severity of CVE-2021-34763?

The severity of CVE-2021-34763 is medium.

What software is affected by CVE-2021-34763?

The Cisco Firepower Management Center (FMC) Software versions 6.1.0 to 7.1.0, Cisco Firepower Threat Defense versions 6.4.0.13 to 6.7.0.3, and Cisco Sourcefire Defense Center versions 6.1.0 to 7.1.0 are affected by CVE-2021-34763.

What are the vulnerabilities associated with CVE-2021-34763?

CVE-2021-34763 is associated with cross-site scripting (XSS) attack and open redirect attack vulnerabilities.

Where can I find more information about CVE-2021-34763?

You can find more information about CVE-2021-34763 in the Cisco Security Advisory: [Cisco Security Advisory](https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-openredir-TVPMWJyg)

Vulnerability/
CVE-2021-34763

medium

4.8

CWE

79 601

27/10/2021

7/11/2024

CVE-2021-34763: Cisco Firepower Management Center Software Cross-Site Scripting and Open Redirect Vulnerabilities

First published: Wed Oct 27 2021(Updated: )

Multiple vulnerabilities in the web-based management interface of Cisco Firepower Management Center (FMC) Software could allow an attacker to execute a cross-site scripting (XSS) attack or an open redirect attack. For more information about these vulnerabilities, see the Details section of this advisory.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco Firepower Management Center Virtual Appliance	=6.1.0
Cisco Firepower Management Center Virtual Appliance	=6.2.0
Cisco Firepower Management Center Virtual Appliance	=6.2.3
Cisco Firepower Management Center Virtual Appliance	=6.3.0
Cisco Firepower Management Center Virtual Appliance	=6.4.0
Cisco Firepower Management Center Virtual Appliance	=6.5.0
Cisco Firepower Management Center Virtual Appliance	=6.6.0
Cisco Firepower Management Center Virtual Appliance	=6.6.1
Cisco Firepower Management Center Virtual Appliance	=6.7.0
Cisco Firepower Management Center Virtual Appliance	=7.0.0
Cisco Firepower Management Center Virtual Appliance	=7.1.0
Cisco Firepower Threat Defense	<6.4.0.13
Cisco Firepower Threat Defense	>=6.5.0<6.6.5
Cisco Firepower Threat Defense	>=6.7.0<6.7.0.3
Cisco Sourcefire Defense Center	=6.1.0
Cisco Sourcefire Defense Center	=6.2.0
Cisco Sourcefire Defense Center	=6.2.3
Cisco Sourcefire Defense Center	=6.3.0
Cisco Sourcefire Defense Center	=6.4.0
Cisco Sourcefire Defense Center	=6.5.0
Cisco Sourcefire Defense Center	=6.6.0
Cisco Sourcefire Defense Center	=6.6.1
Cisco Sourcefire Defense Center	=6.7.0
Cisco Sourcefire Defense Center	=7.0.0
Cisco Sourcefire Defense Center	=7.1.0

Never miss a vulnerability like this again

Reference Links

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-openredir-TVPMWJyg

Frequently Asked Questions

What is the vulnerability ID?
The vulnerability ID is CVE-2021-34763.
What is the severity of CVE-2021-34763?
The severity of CVE-2021-34763 is medium.
What software is affected by CVE-2021-34763?
The Cisco Firepower Management Center (FMC) Software versions 6.1.0 to 7.1.0, Cisco Firepower Threat Defense versions 6.4.0.13 to 6.7.0.3, and Cisco Sourcefire Defense Center versions 6.1.0 to 7.1.0 are affected by CVE-2021-34763.
What are the vulnerabilities associated with CVE-2021-34763?
CVE-2021-34763 is associated with cross-site scripting (XSS) attack and open redirect attack vulnerabilities.
Where can I find more information about CVE-2021-34763?
You can find more information about CVE-2021-34763 in the Cisco Security Advisory: [Cisco Security Advisory](https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fmc-xss-openredir-TVPMWJyg)

collector/nvd-index
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/author
agent/severity
agent/title
agent/last-modified-date
agent/references
agent/weakness
agent/tags
agent/description
agent/first-publish-date
agent/event
vendor/cisco
canonical/cisco firepower management center virtual appliance
version/cisco firepower management center virtual appliance/6.1.0
version/cisco firepower management center virtual appliance/6.2.0
version/cisco firepower management center virtual appliance/6.2.3
version/cisco firepower management center virtual appliance/6.3.0
version/cisco firepower management center virtual appliance/6.4.0
version/cisco firepower management center virtual appliance/6.5.0
version/cisco firepower management center virtual appliance/6.6.0
version/cisco firepower management center virtual appliance/6.6.1
version/cisco firepower management center virtual appliance/6.7.0
version/cisco firepower management center virtual appliance/7.0.0
version/cisco firepower management center virtual appliance/7.1.0
canonical/cisco firepower threat defense
version/cisco firepower threat defense/6.5.0
version/cisco firepower threat defense/6.7.0
canonical/cisco sourcefire defense center
version/cisco sourcefire defense center/6.1.0
version/cisco sourcefire defense center/6.2.0
version/cisco sourcefire defense center/6.2.3
version/cisco sourcefire defense center/6.3.0
version/cisco sourcefire defense center/6.4.0
version/cisco sourcefire defense center/6.5.0
version/cisco sourcefire defense center/6.6.0
version/cisco sourcefire defense center/6.6.1
version/cisco sourcefire defense center/6.7.0
version/cisco sourcefire defense center/7.0.0
version/cisco sourcefire defense center/7.1.0