CVE-2016-1345

Cisco FireSIGHT System Software 5.4.0 through 6.0.1 and ASA with FirePOWER Services 5.4.0 through 6.0.0.1 allow remote attackers to bypass malware protection via crafted fields in HTTP headers, aka Bug ID CSCux22726.

Published: Apr 1, 2016
Updated: Nov 9, 2025
CVE: CVE-2016-1345
Severity: Medium
Exploit:

CVSS v2:

Severity: Medium
Score: 5
AV:N/AC:L/Au:N/C:N/I:P/A:N

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
cisco / firesight_system_software	5.4.0.2	5.4.0.2.x
cisco / firesight_system_software	5.4.0	5.4.0.x
cisco / firesight_system_software	5.4.0.5	5.4.0.5.x
cisco / firesight_system_software	5.4.1.4	5.4.1.4.x
cisco / asa_with_firepower_services	6.0.0	6.0.0.x
cisco / asa_with_firepower_services	6.0.0.1	6.0.0.1.x
cisco / asa_with_firepower_services	5.4.0.4	5.4.0.4.x
cisco / firesight_system_software	5.4.1.2	5.4.1.2.x
cisco / firesight_system_software	5.4.1	5.4.1.x
cisco / firesight_system_software	5.4.0.6	5.4.0.6.x
cisco / asa_with_firepower_services	5.4.0.6	5.4.0.6.x
cisco / asa_with_firepower_services	5.4.0.5	5.4.0.5.x
cisco / firesight_system_software	5.4.1.3	5.4.1.3.x
cisco / firesight_system_software	5.4.0.3	5.4.0.3.x
cisco / asa_with_firepower_services	5.4.0.2	5.4.0.2.x
cisco / asa_with_firepower_services	5.4.0	5.4.0.x
cisco / firesight_system_software	6.0.0.1	6.0.0.1.x
cisco / firesight_system_software	6.0.0	6.0.0.x
cisco / asa_with_firepower_services	5.4.0.3	5.4.0.3.x
cisco / firesight_system_software	6.0.1	6.0.1.x
cisco / asa_with_firepower_services	5.4.0.1	5.4.0.1.x
cisco / firesight_system_software	5.4.0.4	5.4.0.4.x
cisco / firesight_system_software	5.4.0.1	5.4.0.1.x

Vulnerability Database

320,552

CVE-2016-1345

Deep Security Visibility Without the Complexity