CVE-2021-34751

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Nov 15, 2024

CWE ID 317

Summary

CVE-2021-34751 is a vulnerability affecting the administrative web-based GUI configuration manager of Cisco Firepower Management Center (FMC) Software. It allows authenticated, remote attackers with low privilege credentials to access sensitive configuration information. This is due to the improper encryption of such data within the GUI configuration manager. An attacker could exploit this flaw by navigating to specific sensitive configurations within the GUI, potentially gaining clear text access to configuration parameters. Cisco has issued software updates to resolve the issue, and there are currently no workarounds available. This vulnerability was disclosed in the October 2021 Cisco ASA, FTD, and FMC Security Advisory Bundled publication.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share

Advisories, Assessments, and Mitigations

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

US Violent Extremists Likely Shifting Focus to Targeted Physical Threats in 2025

DRAT V2: Updated DRAT Emerges in TAG-140’s Arsenal

Threats to the 2025 NATO Summit

Know What Matters

For Customers

For Partners

CVE-2021-34751

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations