Home/Product/cisco firepower extensible operating system
Product

cisco firepower extensible operating system

56 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2024-20294
all versions
A vulnerability in the Link Layer Discovery Protocol (LLDP) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an
6.6MEDIUM
 CVE-2023-20234
all versions
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to create a file or overwrite any f
4.4MEDIUM
 CVE-2023-20015
all versions
A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 640
6.0MEDIUM
 CVE-2022-20934
all versions
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software and Cisco FXOS Software could allow an authenticated,
6.0MEDIUM
 CVE-2022-20625
< 2.3.1.219
A vulnerability in the Cisco Discovery Protocol service of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentic
4.3MEDIUM
 CVE-2021-34714
<= 8.4\(3.115\)
A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Softw
7.4HIGH
 CVE-2021-1368
all versions
A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software and Cisco NX-OS Software could allow an
8.8HIGH
 CVE-2020-3459
< 2.4.1.266
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that a
7.8HIGH
 CVE-2020-3457
>= 2.4 and < 2.4.1.266
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to inject arbitrary commands that a
6.7MEDIUM
 CVE-2020-3456
all versions
A vulnerability in the Cisco Firepower Chassis Manager (FCM) of Cisco FXOS Software could allow an unauthenticated, remote attacke
8.8HIGH
 CVE-2020-3455
< 2.4.1.268
A vulnerability in the secure boot process of Cisco FXOS Software could allow an authenticated, local attacker to bypass the secur
7.8HIGH
 CVE-2020-3545
<= 2.3.1.58
A vulnerability in Cisco FXOS Software could allow an authenticated, local attacker with administrative credentials to cause a buf
6.0MEDIUM
 CVE-2020-3517
>= 1.1 and < 1.1.4.179
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentica
8.6HIGH
 CVE-2020-3504
all versions
A vulnerability in the local management (local-mgmt) CLI of Cisco UCS Manager Software could allow an authenticated, local attacke
3.3LOW
 CVE-2020-3172
< 2.6.1.187
A vulnerability in the Cisco Discovery Protocol feature of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentic
8.8HIGH
 CVE-2020-3169
>= 2.2 and < 2.2.2.97
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to execute arbitrary commands on th
6.7MEDIUM
 CVE-2020-3167
< 2.4.1.234
A vulnerability in the CLI of Cisco FXOS Software and Cisco UCS Manager Software could allow an authenticated, local attacker to e
7.8HIGH
 CVE-2020-3166
< 2.2.2.97
A vulnerability in the CLI of Cisco FXOS Software could allow an authenticated, local attacker to read or write arbitrary files on
6.7MEDIUM
 CVE-2020-3120
<= 2.3.1.173
A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Sof
6.5MEDIUM
 CVE-2019-1734
< 2.2.2.91
A vulnerability in the implementation of a CLI diagnostic command in Cisco FXOS Software and Cisco NX-OS Software could allow an a
5.5MEDIUM
 CVE-2019-12700
<= 2.2
A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Sof
6.5MEDIUM
 CVE-2019-12699
>= 2.0 and < 2.2.2.101
Multiple vulnerabilities in the CLI of Cisco FXOS Software and Cisco Firepower Threat Defense (FTD) Software could allow an authen
7.8HIGH
 CVE-2019-1780
< 2.3.1.130
A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker with admin
6.7MEDIUM
 CVE-2019-1858
>= 2.6 and < 2.6.1.131
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Sof
8.6HIGH
 CVE-2019-1795
< 2.0.1.201
A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute
6.7MEDIUM
 CVE-2019-1779
< 2.4.1.101
A vulnerability in the CLI of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local attacker to execute
6.7MEDIUM
 CVE-2019-1600
>= 1.1 and < 2.2.2.91
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local
4.4MEDIUM
 CVE-2019-1598
>= 2.3 and < 2.3.1.75
Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software
8.6HIGH
 CVE-2019-1597
> 2.2.2.54 and < 2.3.1.75
Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software
8.6HIGH
 CVE-2018-0395
all versions
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could
8.8HIGH
 CVE-2018-0331
>= 1.1 and < 2.0.1.153
A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running, or based on, Cisco NX-OS Sof
6.5MEDIUM
 CVE-2018-0311
>= 1.1 and < 1.1.4.179
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentica
7.5HIGH
 CVE-2018-0310
>= 1.1 and < 1.1.4.179
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthentica
9.8CRITICAL
 CVE-2018-0303
>= 1.1 and < 1.1.4.179
A vulnerability in the Cisco Discovery Protocol component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthent
8.8HIGH
 CVE-2018-0302
>= 1.1 and < 1.1.4.169
A vulnerability in the CLI parser of Cisco FXOS Software and Cisco UCS Fabric Interconnect Software could allow an authenticated,
7.8HIGH
 CVE-2018-0298
>= 1.1 and < 1.1.4.169
A vulnerability in the web UI of Cisco FXOS and Cisco UCS Fabric Interconnect Software could allow an unauthenticated, remote atta
7.5HIGH
 CVE-2018-0294
>= 2.1.1 and < 2.1.1.86
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local att
6.7MEDIUM
 CVE-2017-12329
all versions
A vulnerability in the CLI of Cisco Firepower Extensible Operating System (FXOS) and NX-OS System Software could allow an authenti
6.3MEDIUM
 CVE-2017-12299
all versions
A vulnerability exists in the process of creating default IP blocks during device initialization for Cisco ASA Next-Generation Fir
5.3MEDIUM
 CVE-2017-12277
<= 1.1.3
A vulnerability in the Smart Licensing Manager service of the Cisco Firepower 4100 Series Next-Generation Firewall (NGFW) and Fire
8.8HIGH
 CVE-2017-3883
<= 2.3
A vulnerability in the authentication, authorization, and accounting (AAA) implementation of Cisco Firepower Extensible Operating
8.6HIGH
 CVE-2017-6602
all versions
A vulnerability in the CLI of Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewall (
4.4MEDIUM
 CVE-2017-6601
all versions
A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewa
7.1HIGH
 CVE-2017-6600
all versions
A vulnerability in the CLI of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Next-Generation Firewa
7.8HIGH
 CVE-2017-6598
all versions
A vulnerability in the debug plug-in functionality of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Serie
6.7MEDIUM
 CVE-2017-6597
all versions
A vulnerability in the local-mgmt CLI command of the Cisco Unified Computing System (UCS) Manager, Cisco Firepower 4100 Series Nex
7.8HIGH
 CVE-2015-6435
all versions
An unspecified CGI script in Cisco FX-OS before 1.1.2 on Firepower 9000 devices and Cisco Unified Computing System (UCS) Manager b
9.8CRITICAL
 CVE-2015-6380
all versions
An unspecified script in the web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices all
 CVE-2015-6374
all versions
The web interface in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices does not properly restrict u
 CVE-2015-6371
all versions
Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote authenticated users to read arbitra
 CVE-2015-6370
all versions
The Management I/O (MIO) component in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows loca
 CVE-2015-6369
all versions
The USB driver in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows physically proximate att
 CVE-2015-6368
all versions
Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to read files via a craft
 CVE-2015-6373
all versions
Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 device
 CVE-2015-6372
all versions
Cross-site scripting (XSS) vulnerability in the web-based management interface in Cisco Firepower Extensible Operating System 1.1(
 CVE-2015-4287
all versions
Cisco Firepower Extensible Operating System 1.1(1.86) on Firepower 9000 devices allows remote attackers to bypass intended access
Vulnerabilities
CISA KEV catalog
CWE weaknesses
CAPEC attack patterns
Package vulnerabilities
Threat intelligence
Threat actors
Tools & malware
ATT&CK techniques
IOCs
Detection & defense
Sigma rules
YARA rules
Atomic Red Team tests
D3FEND countermeasures
Compliance
NIST 800-53
ISO 27001:2022
SOC 2 TSC
PCI-DSS v4.0
CIS Controls v8.1
About
All capabilities
Live statistics
Data sources
Privacy policy
Terms of service
threatengine.sh  ·  Open-source threat intelligence platform  ·  100+ authoritative sources  ·  Every fact traces to its origin