Main Vulnerability Database SB2017080307

SB2017080307 - Security restrictions bypass in Cisco Firepower Management Center

Published: August 3, 2017

Security Bulletin ID SB2017080307

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Security restrictions bypass (CVE-ID: CVE-2017-6766)

The vulnerability allows a remote unauthenticated attacker to bypass security restrictions on the target system.

The weakness exists in the Secure Sockets Layer (SSL) Decryption and Inspection feature of Cisco Firepower System Software due to unexpected interaction with Known Key and Decrypt and Resign configuration settings of SSL policies. A remote attacker can send a specially crafted SSL packet through an affected device in a valid SSL session and bypass the SSL decryption and inspection policy.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170802-fpw