Description

A vulnerability in filesystem usage management for Cisco Firepower Device Manager (FDM) Software could allow an authenticated, remote attacker to exhaust filesystem resources, resulting in a denial of service (DoS) condition on an affected device. This vulnerability is due to the insufficient management of available filesystem resources. An attacker could exploit this vulnerability by uploading files to the device and exhausting available filesystem resources. A successful exploit could allow the attacker to cause database errors and cause the device to become unresponsive to web-based management. Manual intervention is required to free filesystem resources and return the device to an operational state.

Related CPE's

a

cisco

firepower_device_manager

3

h

cisco

firepower_1010

-

h

cisco

firepower_1120

-

h

cisco

firepower_1140

-

h

cisco

firepower_1150

-

h

cisco

firepower_2110

-

h

cisco

firepower_2120

-

h

cisco

firepower_2130

-

h

cisco

firepower_2140

-

h

cisco

firepower_4110

-

h

cisco

firepower_4112

-

h

cisco

firepower_4115

-

h

cisco

firepower_4120

-

h

cisco

firepower_4125

-

h

cisco

firepower_4140

-

h

cisco

firepower_4145

-

h

cisco

firepower_4150

-

h

cisco

firepower_9300

-

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-fdm-dos-nFES8xTN

Vendor Advisory

Weaknesses

[email protected]

Primary
CWE-400

CVSS impact metrics

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

6.5 · Medium

  • CVSS V3.1

  • CVSS V3.0

  • CVSS V2.0

Information

Source identifier

[email protected]

Vulnerability status

Analyzed

Published

2021-04-29T18:15:09.347

4 years ago

Last modified

2021-05-09T02:41:29.470

4 years ago