CVE Vulnerabilities

CVE-2019-12697

Published: Oct 02, 2019 | Modified: Oct 08, 2020
CVSS 3.x
7.5
HIGH
Source:
NVD
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CVSS 2.x
5 MEDIUM
AV:N/AC:L/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file types. For more information about these vulnerabilities, see the Details section of this advisory.

Affected Software

Name Vendor Start Version End Version
Firepower Cisco 6.2.3.1 (including) 6.2.3.1 (including)
Firepower Cisco 6.2.3.7 (including) 6.2.3.7 (including)
Firepower Cisco 6.3.0 (including) 6.3.0 (including)
Firepower Cisco 6.4.0 (including) 6.4.0 (including)

References