ID de Prueba:	1.3.6.1.4.1.25623.1.0.106807
Categoría:	CISCO
Título:	Cisco Firepower System Software Static Credential Vulnerability
Resumen:	A vulnerability in Cisco Firepower System Software could allow an; unauthenticated, remote attacker to log in to the device with a default account. This account does not have full; administrator privileges.
Descripción:	Summary: A vulnerability in Cisco Firepower System Software could allow an unauthenticated, remote attacker to log in to the device with a default account. This account does not have full administrator privileges. Vulnerability Insight: The vulnerability is due to a user account that has a default and static password. This account is created during installation. An attacker could exploit this vulnerability by connecting either locally or remotely to the affected system. Vulnerability Impact: A successful exploit could allow the attacker to log in to the device using the default account. The default account allows the execution of a subset of command-line interface (CLI) commands that would allow the attacker to partially compromise the device. Solution: See the referenced vendor advisory for a solution. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2016-1394 BugTraq ID: 91503 http://www.securityfocus.com/bid/91503 Cisco Security Advisory: 20160629 Cisco Firepower System Software Static Credential Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160629-fp
Copyright	Copyright (C) 2017 Greenbone AG

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.