A vulnerability in the storage of proxy server credentials of Cisco Firepower Management Center (FMC) could allow an authenticated, local attacker to view credentials for a configured proxy server. The vulnerability is due to clear-text storage and weak permissions of related configuration files. An attacker could exploit this vulnerability by accessing the CLI of the affected software and viewing the contents of the affected files. A successful exploit could allow the attacker to view the credentials that are used to access the proxy server.
History

Tue, 26 Nov 2024 16:45:00 +0000

Type Values Removed Values Added
First Time appeared Cisco secure Firewall Management Center
CPEs cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:* cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*
Vendors & Products Cisco firepower Management Center
Cisco secure Firewall Management Center

Tue, 12 Nov 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2021-01-13T21:20:43.475334Z

Updated: 2024-11-12T20:47:01.218Z

Reserved: 2020-11-13T00:00:00

Link: CVE-2021-1126

cve-icon Vulnrichment

Updated: 2024-08-03T15:55:18.590Z

cve-icon NVD

Status : Modified

Published: 2021-01-13T22:15:14.303

Modified: 2024-11-26T16:09:02.407

Link: CVE-2021-1126

cve-icon Redhat

No data.