Sign-up

ID

VAR-201508-0479


CVE

CVE-2015-4302


TITLE

Cisco FireSIGHT Management Center of FireSIGHT system Software Web Vulnerability to delete arbitrary system policy in the interface

Trust: 0.8

sources: JVNDB: JVNDB-2015-004358

DESCRIPTION

The web interface in Cisco FireSIGHT Management Center 5.3.1.4 allows remote attackers to delete arbitrary system policies via modified parameters in a POST request, aka Bug ID CSCuu25390. Vendors have confirmed this vulnerability Bug ID CSCuu25390 It is released as. Supplementary information : CWE Vulnerability type by CWE-284: Improper Access Control ( Inappropriate access control ) Has been identified. http://cwe.mitre.org/data/definitions/284.htmlBy a third party POST Arbitrary system policies may be removed via changed parameters in the request. The Cisco FireSIGHT Management Center centrally manages the network security and operational capabilities of Cisco ASA and Cisco FirePOWER Network Security appliances with FirePOWER Services. Cisco FireSIGHT System Software is prone to a remote security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to delete a system policy other than their own. This may result in a denial of service condition. A remote attacker could exploit this vulnerability to compromise the integrity of the application by incorrectly removing system policies

Trust: 2.52

sources: NVD: CVE-2015-4302 // JVNDB: JVNDB-2015-004358 // CNVD: CNVD-2015-05528 // BID: 76345 // VULHUB: VHN-82263

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2015-05528

AFFECTED PRODUCTS

vendor:ciscomodel:firesight system softwarescope:eqversion:5.3.1.4

Trust: 2.7

vendor:ciscomodel:firesight management centerscope:eqversion:5.3.1.4

Trust: 0.6

sources: CNVD: CNVD-2015-05528 // BID: 76345 // JVNDB: JVNDB-2015-004358 // CNNVD: CNNVD-201508-377 // NVD: CVE-2015-4302

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2015-4302
value: MEDIUM

Trust: 1.0

NVD: CVE-2015-4302
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2015-05528
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201508-377
value: MEDIUM

Trust: 0.6

VULHUB: VHN-82263
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2015-4302
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2015-05528
severity: MEDIUM
baseScore: 5.8
vectorString: AV:N/AC:M/AU:N/C:N/I:P/A:P
accessVector: NETWORK
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 8.6
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-82263
severity: MEDIUM
baseScore: 6.4
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 4.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

sources: CNVD: CNVD-2015-05528 // VULHUB: VHN-82263 // JVNDB: JVNDB-2015-004358 // CNNVD: CNNVD-201508-377 // NVD: CVE-2015-4302

PROBLEMTYPE DATA

problemtype:CWE-284

Trust: 1.1

problemtype:CWE-Other

Trust: 0.8

sources: VULHUB: VHN-82263 // JVNDB: JVNDB-2015-004358 // NVD: CVE-2015-4302

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201508-377

TYPE

Input Validation Error

Trust: 0.3

sources: BID: 76345

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2015-004358

PATCH
title:40432url:http://tools.cisco.com/security/center/viewAlert.x?alertId=40432
Trust: 0.8
title:Cisco FireSIGHT Management Center System Policy Removal Vulnerability Patchurl:https://www.cnvd.org.cn/patchInfo/show/62932
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2015-05528 // 
            
            
            
            JVNDB: JVNDB-2015-004358

EXTERNAL IDS
db:NVDid:CVE-2015-4302
Trust: 3.4
db:BIDid:76345
Trust: 2.0
db:SECTRACKid:1033279
Trust: 1.1
db:JVNDBid:JVNDB-2015-004358
Trust: 0.8
db:CNNVDid:CNNVD-201508-377
Trust: 0.7
db:CNVDid:CNVD-2015-05528
Trust: 0.6
db:VULHUBid:VHN-82263
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2015-05528 // 
            
            
            
            VULHUB: VHN-82263 // 
            
            
            
            BID: 76345 // 
            
            
            
            JVNDB: JVNDB-2015-004358 // 
            
            
            
            CNNVD: CNNVD-201508-377 // 
            
            
            
            NVD: CVE-2015-4302

REFERENCES
url:http://tools.cisco.com/security/center/viewalert.x?alertid=40432
Trust: 2.3
url:http://www.securityfocus.com/bid/76345
Trust: 1.7
url:http://www.securitytracker.com/id/1033279
Trust: 1.1
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-4302
Trust: 0.8
url:http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-4302
Trust: 0.8
url:http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20151217-fsm
Trust: 0.3
url:http://www.cisco.com/c/en/us/products/security/firesight-management-center/index.html
Trust: 0.3
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2015-05528 // 
            
            
            
            VULHUB: VHN-82263 // 
            
            
            
            BID: 76345 // 
            
            
            
            JVNDB: JVNDB-2015-004358 // 
            
            
            
            CNNVD: CNNVD-201508-377 // 
            
            
            
            NVD: CVE-2015-4302

CREDITS
Cisco
Trust: 0.9
sources:
            
            
            BID: 76345 // 
            
            
            
            CNNVD: CNNVD-201508-377

SOURCES
db:CNVDid:CNVD-2015-05528
db:VULHUBid:VHN-82263
db:BIDid:76345
db:JVNDBid:JVNDB-2015-004358
db:CNNVDid:CNNVD-201508-377
db:NVDid:CVE-2015-4302

LAST UPDATE DATE
2024-11-23T22:42:27.676000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2015-05528date:2015-08-25T00:00:00
db:VULHUBid:VHN-82263date:2016-12-28T00:00:00
db:BIDid:76345date:2015-08-13T00:00:00
db:JVNDBid:JVNDB-2015-004358date:2015-08-25T00:00:00
db:CNNVDid:CNNVD-201508-377date:2015-08-20T00:00:00
db:NVDid:CVE-2015-4302date:2024-11-21T02:30:48

SOURCES RELEASE DATE
db:CNVDid:CNVD-2015-05528date:2015-08-24T00:00:00
db:VULHUBid:VHN-82263date:2015-08-19T00:00:00
db:BIDid:76345date:2015-08-13T00:00:00
db:JVNDBid:JVNDB-2015-004358date:2015-08-25T00:00:00
db:CNNVDid:CNNVD-201508-377date:2015-08-18T00:00:00
db:NVDid:CVE-2015-4302date:2015-08-19T14:59:01.767