CVE-2019-1869
published 2019-06-20CVE-2019-1869: A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running on virtual platforms could allow an…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running on virtual platforms could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to a logic error that may occur under specific traffic conditions. An attacker could exploit this vulnerability by sending a series of crafted packets to an affected device. A successful exploit could allow the attacker to prevent the targeted service interface from receiving any traffic, which would lead to a DoS condition on the affected interface. The device may have to be manually reloaded to recover from exploitation of this vulnerability.
Affected
9 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_asr_5000_series_software | >= unspecified < 21.11.1 | 21.11.1 |
| cisco | staros | — | — |
| cisco | staros | >= 21.10 < 21.10.2 | 21.10.2 |
| cisco | staros | >= 21.11 < 21.11.1 | 21.11.1 |
| cisco | staros | >= 21.6 < 21.6.13 | 21.6.13 |
| cisco | staros | >= 21.6b < 21.6b.16 | 21.6b.16 |
| cisco | staros | >= 21.7 < 21.7.11 | 21.7.11 |
| cisco | staros | >= 21.8 < 21.8.10 | 21.8.10 |
| cisco | staros | >= 21.9 < 21.9.7 | 21.9.7 |