← Back

CVE-2019-1695

nvd nist
Published: May 3, 2019Modified: Nov 21, 2024

JSON object

Loading...
6.5
Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Exploitability: 2.8 / Impact: 3.6
Source: NVD

Description

A vulnerability in the detection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent attacker to send data directly to the kernel of an affected device. The vulnerability exists because the software improperly filters Ethernet frames sent to an affected device. An attacker could exploit this vulnerability by sending crafted packets to the management interface of an affected device. A successful exploit could allow the attacker to bypass the Layer 2 (L2) filters and send data directly to the kernel of the affected device. A malicious frame successfully delivered would make the target device generate a specific syslog entry.

Affected (5)

Cisco
2 products
Adaptive Security Appliance Software
Firepower Threat Defense
Configuration A
5 vulnerable · 4 platform
Vulnerable SoftwareAffected Versions
Cisco
Adaptive Security Appliance Software
Before 9.8.4
Adaptive Security Appliance Software
From 9.10 to 9.10.1.17
Adaptive Security Appliance Software
From 9.9 to 9.9.2.50
Cisco
Firepower Threat Defense
From 6.2.1 to 6.2.3.12
Firepower Threat Defense
From 6.3.0 to 6.3.0.3
Running on/withPlatform Versions
Cisco
Firepower 2110
All versions
Cisco
Firepower 2120
All versions
Cisco
Firepower 2130
All versions
Cisco
Firepower 2140
All versions

Related CWEs

CWE-284
Improper Access Control
The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

References (4)

Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.