CVE-2021-34752 | Cisco Firepower Threat Defense Software 6.2.3/6.4.0.6/6.6.0.1 CLI argument injection (cisco-sa-ftd-cmdinject-FmzsLN8)

Inserito da Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability has been found in Cisco Firepower Threat Defense Software 6.2.3/6.4.0.6/6.6.0.1 and classified as critical. Affected by this vulnerability is an unknown functionality of the component CLI. The manipulation leads to argument injection.

This vulnerability is known as CVE-2021-34752. An attack has to be approached locally. There is no exploit available.

It is recommended to upgrade the affected component.

CVE-2021-34752 | Cisco Firepower Threat Defense Software 6.2.3/6.4.0.6/6.6.0.1 CLI argument injection (cisco-sa-ftd-cmdinject-FmzsLN8)

Post correlati

CVE-2024-28749 | ifm Smart PLC AC14xx/Smart PLC AC4xxS up to 4.3.17 os command injection (VDE-2024-012)

CVE-2024-4608 | SellKit Plugin up to 1.9.8 on WordPress id cross site scripting

CVE-2024-11067 | D-Link DSL6740C MAC Address path traversal

CVE-2024-4032 | Python CPython up to 3.12.3/3.13.0a5 IPv6 Address is_private/is_global Privilege Escalation (Issue 113171)