CVE-2019-1597

CWE-20 — Improper Input Validation5 documents5 sources

Severity

7.5HIGH

EPSS

2.3%

top 15.10%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco UCS 6200 AND 6300 Fabric Interconnect Cisco Firepower 4100 Series Next-generation Firewalls Cisco Firepower 9300 Security Appliance +7 more

Timeline

PublishedMar 7

Latest updateMay 13

Description

Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of LDAP packets by an affected device. An attacker could exploit these vulnerabilities by sending an LDAP packet crafted using Basic Encoding Rules (BER) to…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages10 packages

▶CVEListV5cisco/nexus_9000_series_switches_in_standalone_nx-os_modeunspecified — 7.0(3)I7(1)

▶CVEListV5cisco/nexus_7000_and_7700_series_switchesunspecified — 8.2(1)

▶CVEListV5cisco/nexus_3000_series_switchesunspecified — 7.0(3)I7(1)

▶CVEListV5cisco/mds_9000_series_multilayer_switchesunspecified — 8.2(1)

▶CVEListV5cisco/nexus_3500_platform_switchesunspecified — 7.0(3)I7(2)

Patches

Patch: tools.cisco.com ↗Patch: tools.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-c864-jx3f-89v5: Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Soft↗2022-05-13

▶

CVEList

Cisco FXOS and NX-OS Lightweight Directory Access Protocol Denial of Service Vulnerabilities↗2019-03-07

▶

📋Vendor Advisories

Cisco

Cisco FXOS and NX-OS Lightweight Directory Access Protocol Denial of Service Vulnerabilities↗2019-03-07

▶

💬Community

Bugzilla

CVE-2019-13302 ImageMagick: heap-based buffer over-read in MagickCore/fourier.c in ComplexImages↗2019-07-17

▶

External resources

NVD MITRE

Affected products10

Cisco Cisco UCS 6200 AND 6300 Fabric Interconnect≥ unspecified, < 3.2(2b)

Cisco Firepower 4100 Series Next-generation Firewalls≥ unspecified, < 2.0.1.201≥ unspecified, < 2.2.2.54≥ unspecified, < 2.3.1.75

Cisco Firepower 9300 Security Appliance≥ unspecified, < 2.0.1.201≥ unspecified, < 2.2.2.54≥ unspecified, < 2.3.1.75

Cisco Firepower Extensible Operating Systemfixed in 2.3.1.75fixed in 2.2.2.54fixed in 2.0.1.201

Cisco MDS 9000 Series Multilayer Switches≥ unspecified, < 8.2(1)

Cisco Nexus 3000 Series Switches≥ unspecified, < 7.0(3)I7(1)

Cisco Nexus 3500 Platform Switches≥ unspecified, < 7.0(3)I7(2)

Cisco Nexus 7000 AND 7700 Series Switches≥ unspecified, < 8.2(1)

Cisco Nexus 9000 Series Switches IN Standalone Nx-os Mode≥ unspecified, < 7.0(3)I7(1)

Cisco Nx-osfixed in 8.2\(1\)fixed in 7.0\(3\)i7\(1\)fixed in 7.0\(3\)i7\(2\)+3 more

Disclosure

PublishedMar 7, 2019

Latest updateMay 13, 2022