cnvd - cnvd-2016-00386

CNVD-2016-00386

Vulnerability from cnvd - Published: 2016-01-21

Title

Cisco FireSIGHT System Software跨站脚本漏洞（CNVD-2016-00386）

Description

Cisco FireSIGHT Management Center可以集中管理Cisco ASA with FirePOWER Services及Cisco FirePOWER设备的网络安全及操作功能。 Cisco FireSIGHT System Software 6.0.1版本的Management Center存在跨站脚本漏洞。远程攻击者通过构造的cookie，利用此漏洞可注入任意Web脚本或HTML。

Severity

中

Patch Name

Cisco FireSIGHT System Software跨站脚本漏洞（CNVD-2016-00386）的补丁

Patch Description

Formal description

Cisco已经为此发布了一个安全公告（cisco-sa-20160115-FireSIGHT）以及相应补丁: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160115-FireSIGHT

Reference

https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1293

Impacted products

Name
['Cisco FireSIGHT System Software 6.0.0', 'Cisco FireSIGHT System Software 6.0.1']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-1293"
    }
  },
  "description": "Cisco FireSIGHT Management Center\u53ef\u4ee5\u96c6\u4e2d\u7ba1\u7406Cisco ASA with FirePOWER Services\u53caCisco FirePOWER\u8bbe\u5907\u7684\u7f51\u7edc\u5b89\u5168\u53ca\u64cd\u4f5c\u529f\u80fd\u3002\r\n\r\nCisco FireSIGHT System Software 6.0.1\u7248\u672c\u7684Management Center\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u6784\u9020\u7684cookie\uff0c\u5229\u7528\u6b64\u6f0f\u6d1e\u53ef\u6ce8\u5165\u4efb\u610fWeb\u811a\u672c\u6216HTML\u3002",
  "discovererName": "Cisco",
  "formalWay": "Cisco\u5df2\u7ecf\u4e3a\u6b64\u53d1\u5e03\u4e86\u4e00\u4e2a\u5b89\u5168\u516c\u544a\uff08cisco-sa-20160115-FireSIGHT\uff09\u4ee5\u53ca\u76f8\u5e94\u8865\u4e01:\r\nhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160115-FireSIGHT",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-00386",
  "openTime": "2016-01-21",
  "patchDescription": "Cisco FireSIGHT Management Center\u53ef\u4ee5\u96c6\u4e2d\u7ba1\u7406Cisco ASA with FirePOWER Services\u53caCisco FirePOWER\u8bbe\u5907\u7684\u7f51\u7edc\u5b89\u5168\u53ca\u64cd\u4f5c\u529f\u80fd\u3002\r\n\r\nCisco FireSIGHT System Software 6.0.1\u7248\u672c\u7684Management Center\u5b58\u5728\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\u3002\u8fdc\u7a0b\u653b\u51fb\u8005\u901a\u8fc7\u6784\u9020\u7684cookie\uff0c\u5229\u7528\u6b64\u6f0f\u6d1e\u53ef\u6ce8\u5165\u4efb\u610fWeb\u811a\u672c\u6216HTML\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco FireSIGHT System Software\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2016-00386\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco FireSIGHT System Software 6.0.0",
      "Cisco FireSIGHT System Software 6.0.1"
    ]
  },
  "referenceLink": "https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2016-1293",
  "serverity": "\u4e2d",
  "submitTime": "2016-01-18",
  "title": "Cisco FireSIGHT System Software\u8de8\u7ad9\u811a\u672c\u6f0f\u6d1e\uff08CNVD-2016-00386\uff09"
}

CVE-2016-1293 (GCVE-0-2016-1293)

Vulnerability from cvelistv5 – Published: 2016-01-16 02:00 – Updated: 2024-08-05 22:48

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Management Center in Cisco FireSIGHT System Software 6.0.0 and 6.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCux40414.

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

Tags

	http://www.securitytracker.com/id/1034689	vdb-entryx_refsource_SECTRACK
	http://tools.cisco.com/security/center/content/Ci…	vendor-advisoryx_refsource_CISCO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T22:48:13.680Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1034689",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1034689"
          },
          {
            "name": "20160115 Cisco FireSIGHT Management Center Stored Cross-Site Scripting Vulnerabilities",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160115-FireSIGHT"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-01-15T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Management Center in Cisco FireSIGHT System Software 6.0.0 and 6.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCux40414."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-12-05T14:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1034689",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1034689"
        },
        {
          "name": "20160115 Cisco FireSIGHT Management Center Stored Cross-Site Scripting Vulnerabilities",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160115-FireSIGHT"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1293",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Multiple cross-site scripting (XSS) vulnerabilities in the Management Center in Cisco FireSIGHT System Software 6.0.0 and 6.0.1 allow remote attackers to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCux40414."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1034689",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1034689"
            },
            {
              "name": "20160115 Cisco FireSIGHT Management Center Stored Cross-Site Scripting Vulnerabilities",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160115-FireSIGHT"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2016-1293",
    "datePublished": "2016-01-16T02:00:00",
    "dateReserved": "2016-01-04T00:00:00",
    "dateUpdated": "2024-08-05T22:48:13.680Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1"
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CNVD-2016-00386

CVE-2016-1293 (GCVE-0-2016-1293)

Tags

Sightings

Nomenclature