Sign-up

ID

VAR-201708-1356


CVE

CVE-2017-6766


TITLE

Cisco Firepower System Software Cryptographic vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-006919

DESCRIPTION

A vulnerability in the Secure Sockets Layer (SSL) Decryption and Inspection feature of Cisco Firepower System Software 5.4.0, 5.4.1, 6.0.0, 6.1.0, 6.2.0, 6.2.1, and 6.2.2 could allow an unauthenticated, remote attacker to bypass the SSL policy for decrypting and inspecting traffic on an affected system. The vulnerability is due to unexpected interaction with Known Key and Decrypt and Resign configuration settings of SSL policies when the affected software receives unexpected SSL packet headers. An attacker could exploit this vulnerability by sending a crafted SSL packet through an affected device in a valid SSL session. A successful exploit could allow the attacker to bypass the SSL decryption and inspection policy for the affected system, which could allow traffic to flow through the system without being inspected. Cisco Bug IDs: CSCve12652. Cisco Firepower System Software Contains a cryptographic vulnerability. Vendors have confirmed this vulnerability Bug ID CSCve12652 It is released as.Information may be tampered with. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions

Trust: 1.98

sources: NVD: CVE-2017-6766 // JVNDB: JVNDB-2017-006919 // BID: 100233 // VULHUB: VHN-114969

AFFECTED PRODUCTS

vendor:ciscomodel:firesight system softwarescope:eqversion:6.2.0

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope:eqversion:5.4.1

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope:eqversion:6.1.0

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope:eqversion:6.2.1

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope:eqversion:6.2.2

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope:eqversion:6.0.0

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope:eqversion:5.4.0

Trust: 1.6

vendor:ciscomodel:firesight system softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower system softwarescope:eqversion:0

Trust: 0.3

sources: BID: 100233 // JVNDB: JVNDB-2017-006919 // CNNVD: CNNVD-201708-245 // NVD: CVE-2017-6766

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-6766
value: HIGH

Trust: 1.0

NVD: CVE-2017-6766
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201708-245
value: HIGH

Trust: 0.6

VULHUB: VHN-114969
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-6766
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-114969
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-6766
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-114969 // JVNDB: JVNDB-2017-006919 // CNNVD: CNNVD-201708-245 // NVD: CVE-2017-6766

PROBLEMTYPE DATA

problemtype:CWE-310

Trust: 1.9

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: VULHUB: VHN-114969 // JVNDB: JVNDB-2017-006919 // NVD: CVE-2017-6766

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201708-245

TYPE

encryption problem

Trust: 0.6

sources: CNNVD: CNNVD-201708-245

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-006919

PATCH
title:CSCve12652url:https://quickview.cloudapps.cisco.com/quickview/bug/CSCve12652
Trust: 0.8
title:cisco-sa-20170802-fpwurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170802-fpw
Trust: 0.8
title:Cisco Firepower System Software Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=72436
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2017-006919 // 
            
            
            
            CNNVD: CNNVD-201708-245

EXTERNAL IDS
db:NVDid:CVE-2017-6766
Trust: 2.8
db:JVNDBid:JVNDB-2017-006919
Trust: 0.8
db:CNNVDid:CNNVD-201708-245
Trust: 0.7
db:BIDid:100233
Trust: 0.4
db:VULHUBid:VHN-114969
Trust: 0.1
sources:
            
            
            VULHUB: VHN-114969 // 
            
            
            
            BID: 100233 // 
            
            
            
            JVNDB: JVNDB-2017-006919 // 
            
            
            
            CNNVD: CNNVD-201708-245 // 
            
            
            
            NVD: CVE-2017-6766

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170802-fpw
Trust: 2.0
url:https://quickview.cloudapps.cisco.com/quickview/bug/cscve12652
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-6766
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-6766
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-114969 // 
            
            
            
            BID: 100233 // 
            
            
            
            JVNDB: JVNDB-2017-006919 // 
            
            
            
            CNNVD: CNNVD-201708-245 // 
            
            
            
            NVD: CVE-2017-6766

CREDITS
Cisco
Trust: 0.3
sources:
            
            
            BID: 100233

SOURCES
db:VULHUBid:VHN-114969
db:BIDid:100233
db:JVNDBid:JVNDB-2017-006919
db:CNNVDid:CNNVD-201708-245
db:NVDid:CVE-2017-6766

LAST UPDATE DATE
2024-11-23T22:56:06.025000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-114969date:2019-10-09T00:00:00
db:BIDid:100233date:2017-08-02T00:00:00
db:JVNDBid:JVNDB-2017-006919date:2017-09-06T00:00:00
db:CNNVDid:CNNVD-201708-245date:2019-10-17T00:00:00
db:NVDid:CVE-2017-6766date:2024-11-21T03:30:28.630

SOURCES RELEASE DATE
db:VULHUBid:VHN-114969date:2017-08-07T00:00:00
db:BIDid:100233date:2017-08-02T00:00:00
db:JVNDBid:JVNDB-2017-006919date:2017-09-06T00:00:00
db:CNNVDid:CNNVD-201708-245date:2017-08-08T00:00:00
db:NVDid:CVE-2017-6766date:2017-08-07T06:29:00.730