CVE-2019-1697Improper Input Validation in Cisco Adaptive Security Appliance Software

CWE-20Improper Input Validation5 documents5 sources
Severity
7.5HIGHNVD
CNA6.8
EPSS
0.5%
top 34.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Cisco Adaptive Security Appliance SoftwareCisco Adaptive Security Appliance SoftwareCisco Firepower Threat Defense
Timeline
PublishedMay 3
Latest updateMay 24

Description

A vulnerability in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco Adaptive Security Appliance (ASA) Software and Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of LDAP packets sent to an affected device. An attacker could exploit these vulnerabilities by sending a crafted LDAP

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages3 packages

CVEListV5cisco/cisco_adaptive_security_appliance_softwareunspecified9.6(4.21)
NVDcisco/firepower_threat_defense6.3.06.3.0.3+1

🔴Vulnerability Details

2
GHSA
GHSA-f739-c5qw-237q: A vulnerability in the implementation of the Lightweight Directory Access Protocol (LDAP) feature in Cisco Adaptive Security Appliance (ASA) Software2022-05-24
CVEList
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Lightweight Directory Access Protocol Denial of Service Vulnerability2019-05-03

📋Vendor Advisories

1
Cisco
Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software Lightweight Directory Access Protocol Denial of Service Vulnerability2019-05-01

💬Community

1
Bugzilla
CVE-2018-18557 libtiff: Out-of-bounds write in tif_jbig.c2018-10-30
CVE-2019-1697 — Improper Input Validation in Cisco | cvebase