CVE-2019-1869

CWE-8244 documents4 sources
Severity
7.5HIGH
EPSS
1.1%
top 22.35%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Cisco ASR 5000 Series SoftwareCisco Staros
Timeline
PublishedJun 20
Latest updateMay 24

Description

A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running on virtual platforms could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to a logic error that may occur under specific traffic conditions. An attacker could exploit this vulnerability by sending a series of crafted packets to an affected device. A successful expl

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

NVDcisco/staros21.621.6.13+6
CVEListV5cisco/cisco_asr_5000_series_softwareunspecified21.11.1

🔴Vulnerability Details

2
GHSA
GHSA-r863-66v2-rjq3: A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running on virtual platforms could allow an unaut2022-05-24
CVEList
Cisco StarOS Denial of Service Vulnerability2019-06-20

📋Vendor Advisories

1
Cisco
Cisco StarOS Denial of Service Vulnerability2019-06-19
CVE-2019-1869 (HIGH CVSS 7.5) | A vulnerability in the internal pac | cvebase.io