cisco-sa-ftd-geoip-bypass-MB4zRDu: Cisco Firepower Threat Defense Software Geolocation ACL Bypass Vulnerability
First published: Wed Oct 23 2024(Updated: )
A vulnerability in the geolocation access control feature of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass an access control policy.This vulnerability is due to improper assignment of geolocation data. An attacker could exploit
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Firepower Threat Defense (FTD) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of cisco-sa-ftd-geoip-bypass-MB4zRDu?
The cisco-sa-ftd-geoip-bypass-MB4zRDu vulnerability is rated as high severity due to its potential for unauthorized access.
How do I fix cisco-sa-ftd-geoip-bypass-MB4zRDu?
To fix cisco-sa-ftd-geoip-bypass-MB4zRDu, apply the latest patches provided by Cisco for Firepower Threat Defense Software.
What impact does cisco-sa-ftd-geoip-bypass-MB4zRDu have?
The cisco-sa-ftd-geoip-bypass-MB4zRDu vulnerability allows attackers to bypass geolocation-based access controls.
Who is affected by cisco-sa-ftd-geoip-bypass-MB4zRDu?
Organizations using Cisco Firepower Threat Defense (FTD) Software are affected by cisco-sa-ftd-geoip-bypass-MB4zRDu.
What is the exploitation method for cisco-sa-ftd-geoip-bypass-MB4zRDu?
Exploitation of cisco-sa-ftd-geoip-bypass-MB4zRDu can be performed remotely by unauthenticated attackers.
- collector/cisco-recent
- source/Cisco
- agent/severity
- agent/title
- agent/references
- agent/last-modified-date
- agent/weakness
- agent/event
- agent/type
- agent/first-publish-date
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- agent/guess-ai
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco firepower threat defense (ftd)