Detections
Analytics
Cisco Firepower Threat Defense Software Management Access List Bypass Vulnerability (cisco-sa-ftd-accesslist-bypass-5dZs5qZp)
medium Nessus Plugin ID 136700
Language:
Synopsis
The remote device is missing a vendor-supplied security patchDescription
According to its version and configuration, the Cisco Firepower Threat Defense (FTD) Software running on the remote device is affected by vulnerability, where an unauthenticated attacker could bypass a configured management interface access list on an affected system. The vulnerability is due to the configuration of different management access lists, one with ports allowed and denied in another. An attacker could exploit this vulnerability by sending crafted remote management traffic to the local IP address of an affected system. A successful exploit could allow the attacker to bypass the configured management access list policies, and traffic to the management interface would not be properly denied.Solution
Upgrade to the relevant fixed version referenced in Cisco bug ID CSCvr13823See Also
Plugin Details
Severity: Medium
ID: 136700
File Name: cisco-sa-ftd-accesslist-bypass-5dZs5qZp.nasl
Version: 1.7
Type: local
Family: CISCO
Published: 5/19/2020
Updated: 3/31/2023
Supported Sensors: Nessus
Risk Information
VPR
Risk Factor: Low
Score: 1.4
CVSS v2
Risk Factor: Medium
Base Score: 5
Temporal Score: 3.7
Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:P/A:N
CVSS Score Source: CVE-2020-3186
CVSS v3
Risk Factor: Medium
Base Score: 5.3
Temporal Score: 4.6
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Temporal Vector: CVSS:3.0/E:U/RL:O/RC:C
Vulnerability Information
CPE: cpe:/o:cisco:firepower_threat_defense
Required KB Items: installed_sw/Cisco Firepower Threat Defense
Exploit Ease: No known exploits are available
Patch Publication Date: 5/6/2020
Vulnerability Publication Date: 5/6/2020
Reference Information
CVE: CVE-2020-3186
CWE: 284
CISCO-SA: cisco-sa-ftd-accesslist-bypass-5dZs5qZp
IAVA: 2020-A-0205-S
CISCO-BUG-ID: CSCvr13823