ID
VAR-201511-0221
CVE
CVE-2015-6369
TITLE
Cisco Firepower 9000 Run on device Firepower Extensible Operating System of USB Service disruption in drivers (DoS) Vulnerabilities
Trust: 0.8
DESCRIPTION
The USB driver in Cisco Firepower Extensible Operating System 1.1(1.160) on Firepower 9000 devices allows physically proximate attackers to cause a denial of service via a crafted USB device that triggers invalid USB commands, aka Bug ID CSCux10531. The Cisco Firepower 9000 is a set of operating systems running on the 9000 Series firewall appliances from Cisco. A local denial of service vulnerability exists in the Cisco Firepower 9000 Series. Allows a local attacker to exploit this vulnerability to cause a denial of service. This issue is tracked by Cisco Bug ID CSCux10531
Trust: 2.52
IOT TAXONOMY
| category: | ['Network device'] | sub_category: | - | Trust: 0.6 |
AFFECTED PRODUCTS
| vendor: | cisco | model: | firepower extensible operating system | scope: | eq | version: | 1.1\(1.160\) | Trust: 1.6 |
| vendor: | cisco | model: | firepower extensible operating system | scope: | eq | version: | 1.1(1.160) | Trust: 0.8 |
| vendor: | cisco | model: | firepower extensible operating system on firepower devices | scope: | eq | version: | 1.1(1.160)9000 | Trust: 0.6 |
| vendor: | cisco | model: | firepower series | scope: | eq | version: | 90001.1(1.160) | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
THREAT TYPE
local
Trust: 0.9
TYPE
input validation
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | cisco-sa-20151116-fire | url: | http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151116-fire | Trust: 0.8 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2015-6369 | Trust: 3.4 |
| db: | BID | id: | 77629 | Trust: 1.6 |
| db: | JVNDB | id: | JVNDB-2015-005970 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201511-315 | Trust: 0.7 |
| db: | CNVD | id: | CNVD-2015-07739 | Trust: 0.6 |
| db: | SEEBUG | id: | SSVID-89896 | Trust: 0.1 |
| db: | VULHUB | id: | VHN-84330 | Trust: 0.1 |
REFERENCES
| url: | http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20151116-fire | Trust: 2.6 |
| url: | http://www.securityfocus.com/bid/77629 | Trust: 1.2 |
| url: | http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-6369 | Trust: 0.8 |
| url: | http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-6369 | Trust: 0.8 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.9
SOURCES
| db: | CNVD | id: | CNVD-2015-07739 |
| db: | VULHUB | id: | VHN-84330 |
| db: | BID | id: | 77629 |
| db: | JVNDB | id: | JVNDB-2015-005970 |
| db: | CNNVD | id: | CNNVD-201511-315 |
| db: | NVD | id: | CVE-2015-6369 |
LAST UPDATE DATE
2024-11-23T22:34:55.978000+00:00
SOURCES UPDATE DATE
| db: | CNVD | id: | CNVD-2015-07739 | date: | 2015-11-24T00:00:00 |
| db: | VULHUB | id: | VHN-84330 | date: | 2015-11-19T00:00:00 |
| db: | BID | id: | 77629 | date: | 2015-11-17T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-005970 | date: | 2015-11-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-201511-315 | date: | 2015-11-19T00:00:00 |
| db: | NVD | id: | CVE-2015-6369 | date: | 2024-11-21T02:34:52.290 |
SOURCES RELEASE DATE
| db: | CNVD | id: | CNVD-2015-07739 | date: | 2015-11-24T00:00:00 |
| db: | VULHUB | id: | VHN-84330 | date: | 2015-11-19T00:00:00 |
| db: | BID | id: | 77629 | date: | 2015-11-17T00:00:00 |
| db: | JVNDB | id: | JVNDB-2015-005970 | date: | 2015-11-20T00:00:00 |
| db: | CNNVD | id: | CNNVD-201511-315 | date: | 2015-11-19T00:00:00 |
| db: | NVD | id: | CVE-2015-6369 | date: | 2015-11-19T02:59:02.657 |