CVE-2015-6373
Cisco Firepower Extensible Operating System 1.1(1.160) - Cross-Site Request Forgery
Title source: llmDescription
Cross-site request forgery (CSRF) vulnerability in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCux10611.
References (1)
Core 1
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151117-firepower3
Scores
EPSS
0.0059
EPSS Percentile
43.9%
Details
CWE
CWE-352
Status
published
Products (1)
cisco/firepower_extensible_operating_system
1.1\(1.160\)
Published
Nov 18, 2015
Tracked Since
Feb 18, 2026