CVE-2019-1628
published 2019-06-20CVE-2019-1628: A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow…
medium5.5CVSS 3.1
AVLACLPRLUINSUCNINAH
A vulnerability in the web server of Cisco Integrated Management Controller (IMC) could allow an authenticated, local attacker to cause a buffer overflow, resulting in a denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect bounds checking. An attacker could exploit this vulnerability by sending a crafted HTTP request to the affected system. An exploit could allow the attacker to cause a buffer overflow, resulting in a process crash and DoS condition on the device.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_unified_computing_system | >= unspecified < 4.0(4b) | 4.0(4b) |
| cisco | integrated_management_controller | — | — |
| cisco | unified_computing_system | — | — |