What is CVE-2017-6625?

CVE-2017-6625 is a high-severity vulnerability in Cisco Firepower_threat_defense, classified under CWE-399. CVSS score: 7.1/10. Published 2017-05-03.

How severe is CVE-2017-6625?

High severity. CVSS v3 base score is 7.1 out of 10.

Vulnerability in Cisco Firepower_threat_defense

CVE-2017-6625

A "Cisco Firepower Threat Defense 6.0.0 through 6.2.2 and Cisco ASA with FirePOWER Module Denial of Service" vulnerability in the access control policy of Cisco Firepower System Software could allow an authenticated, remote attacker to cau…

EPSS: 0.006 (71.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.1 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:H.

Affected products

Cisco Firepower_threat_defense — versions 6.0.0, 6.0.1, 6.1.0
N/a Cisco Firepower Threat Defense And Asa With Module — versions Cisco Firepower Threat Defense and Cisco ASA with FirePOWER Module

Weakness classification (CWE)

CWE-399

References

psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2017-6625?: CVE-2017-6625 is a high-severity vulnerability in Cisco Firepower_threat_defense, classified under CWE-399. CVSS score: 7.1/10. Published 2017-05-03.
How severe is CVE-2017-6625?: High severity. CVSS v3 base score is 7.1 out of 10.