CVE-2019-15256Uncontrolled Resource Consumption in Cisco Adaptive Security Appliance Software

CWE-399CWE-400Uncontrolled Resource Consumption4 documents4 sources
Severity
8.6HIGHNVD
EPSS
1.2%
top 21.43%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
14
Cisco Adaptive Security Appliance SoftwareCisco Adaptive Security Appliance SoftwareCisco Firepower Threat Defense+11 more
Timeline
PublishedOct 2
Latest updateMay 24

Description

A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper management of system memory. An attacker could exploit this vulnerability by sending malicious IKEv1 traffic to an affected device. The attacker does

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages14 packages

NVDcisco/firepower_threat_defense6.2.06.2.3.11+1
NVDcisco/asa_5505_firmware201.4\(1.21\), 9.9\(2.4\)+1
NVDcisco/asa_5510_firmware201.4\(1.21\), 9.9\(2.4\)+1

🔴Vulnerability Details

2
GHSA
GHSA-5p28-46mx-rrvx: A vulnerability in the Internet Key Exchange version 1 (IKEv1) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat2022-05-24
CVEList
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software IKEv1 Denial of Service Vulnerability2019-10-02

📋Vendor Advisories

1
Cisco
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software IKEv1 Denial of Service Vulnerability2019-10-02
CVE-2019-15256 — Uncontrolled Resource Consumption | cvebase