CVE-2019-1598

CWE-20Improper Input ValidationCWE-522Insufficiently Protected Credentials5 documents5 sources
Severity
7.5HIGH
EPSS
2.3%
top 15.10%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
10
Cisco Firepower 4100 Series Next-generation FirewallsCisco Firepower 9300 Security ApplianceCisco MDS 9000 Series Multilayer Switches+7 more
Timeline
PublishedMar 7
Latest updateMay 24

Description

Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of LDAP packets by an affected device. An attacker could exploit these vulnerabilities by sending an LDAP packet crafted using Basic Encoding Rules (BER) to

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages10 packages

CVEListV5cisco/nexus_9000_series_switches_in_standalone_nx-os_modeunspecified7.0(3)I7(1)
CVEListV5cisco/nexus_7000_and_7700_series_switchesunspecified6.2(20)+2
CVEListV5cisco/nexus_3000_series_switchesunspecified7.0(3)I7(1)
CVEListV5cisco/mds_9000_series_multilayer_switchesunspecified8.2(1)
CVEListV5cisco/nexus_3500_platform_switchesunspecified7.0(3)I7(2)

Patches

Patch: tools.cisco.comPatch: tools.cisco.com

🔴Vulnerability Details

3
GHSA
Redgate SQL Change Automation Plugin stored credentials in plain text2022-05-24
GHSA
GHSA-w5gg-vvpv-8727: Multiple vulnerabilities in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco FXOS Software and Cisco NX-OS Soft2022-05-13
CVEList
Cisco FXOS and NX-OS Lightweight Directory Access Protocol Denial of Service Vulnerabilities2019-03-07

📋Vendor Advisories

1
Cisco
Cisco FXOS and NX-OS Lightweight Directory Access Protocol Denial of Service Vulnerabilities2019-03-07