Arbitrary System Policy Deletion Vulnerability in Cisco FireSIGHT Management Center 5.3.1.4

Arbitrary System Policy Deletion Vulnerability in Cisco FireSIGHT Management Center 5.3.1.4

CVE-2015-4302 · MEDIUM Severity

AV:N/AC:L/AU:N/C:N/I:P/A:P

The web interface in Cisco FireSIGHT Management Center 5.3.1.4 allows remote attackers to delete arbitrary system policies via modified parameters in a POST request, aka Bug ID CSCuu25390.

Learn more about our Cis Benchmark Audit For Cisco.