Vulnerability Database

289,599

Total vulnerabilities in the database

CVE-2020-3186

A vulnerability in the management access list configuration of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass a configured management interface access list on an affected system. The vulnerability is due to the configuration of different management access lists, with ports allowed in one access list and denied in another. An attacker could exploit this vulnerability by sending crafted remote management traffic to the local IP address of an affected system. A successful exploit could allow the attacker to bypass the configured management access list policies, and traffic to the management interface would not be properly denied.

  • Published: May 6, 2020
  • Updated: Apr 14, 2023
  • CVE: CVE-2020-3186
  • Severity: Medium
  • Exploit:

CVSS v3:

  • Severity: Medium
  • Score: 5.3
  • AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CVSS v2:

  • Severity: Medium
  • Score: 5
  • AV:N/AC:L/Au:N/C:N/I:P/A:N

No CWE or OWASP classifications available.

Software From Fixed in
cisco / firepower_threat_defense 6.5.0 6.5.0.2
cisco / firepower_threat_defense 6.3.0 6.3.0.6
cisco / firepower_threat_defense 6.4.0 6.4.0.7
cisco / asa_5505_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5505_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5510_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5510_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5512-x_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5512-x_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5515-x_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5515-x_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5520_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5520_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5525-x_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5525-x_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5540_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5540_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5545-x_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5545-x_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5550_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5550_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5555-x_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5555-x_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5580_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5580_firmware 201.5(23.16) 201.5(23.16).x
cisco / asa_5585-x_firmware 9.12(1.6) 9.12(1.6).x
cisco / asa_5585-x_firmware 201.5(23.16) 201.5(23.16).x