Cisco Firepower 9000 Cross-Site Request Forgery Vulnerability
The vulnerability is due to a lack of cross-site request forgery (CSRF) protection. An attacker could exploit this vulnerability by tricking the user of a web application into executing an adverse action.
Cisco has not released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.
This advisory is available at the following link: http://ift.tt/1WXNukG
from Cisco Security Advisory http://ift.tt/1WXNukG