CVE-2015-4242

CVE Database · CVE-2015-4242

CVE-2015-4242

· N/AModified

CVSS v3.1

N/A

EPSS

1.00%

Published

Jul 8, 2015

Modified

May 6, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Cross-site request forgery (CSRF) vulnerability in Cisco FireSIGHT System Software 5.4.1.2 and 6.0.0 in FireSIGHT Management Center allows remote attackers to hijack the authentication of arbitrary users, aka Bug ID CSCuu94721.

Weaknesses (CWE)

CWE-352

Affected Products (2)

cisco · firesight_system_softwarevulnerable

References (4)

http://tools.cisco.com/security/center/viewAlert.x?alertId=39643

Vendor Advisory

http://www.securitytracker.com/id/1032806

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/viewAlert.x?alertId=39643

Vendor Advisory

http://www.securitytracker.com/id/1032806

Third Party AdvisoryVDB Entry

KEV Catalog EPSS Scores Vendors All CVEs