← back
CVE-2021-34755

Cisco Firepower Threat Defense Software Command Injection Vulnerabilities

CVSS 6.7 MEDIUMEPSS 0.3%CWE-20
Vexday Risk Score
13Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 6.7EPSS 0.3%KEV nãoPoC Nuclei Metasploit Patch referenciado
Lifecycle
27 Oct 2021Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
Multiple vulnerabilities in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local attacker to execute arbitrary commands with root privileges. For more information about these vulnerabilities, see the Details section of this advisory.
CVSS:3.1/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H