Vulnerability in Cisco Firesight_system_software

CVE-2015-6427

Cisco FireSIGHT Management Center allows remote attackers to bypass the HTTP attack detection feature and avoid triggering Snort IDS rules via an SSL session that is mishandled after decryption, aka Bug ID CSCux53437.

EPSS: 0.004 (60.9th percentile) — read the EPSS interpretation.

Affected products

Cisco Firesight_system_software — versions 5.3.0, 5.3.0.1, 5.3.0.2
N/a — versions n/a

Weakness classification (CWE)

CWE-254

References

1034488 (vdb-entry, x_refsource_SECTRACK)
20151217 Cisco FireSIGHT Management Center SSL HTTP Attack Detection Vulnerability (x_refsource_CISCO, vendor-advisory, Vendor Advisory)