CVE-2019-1969Improper Input Validation in Cisco Nx-os Software

CWE-264CWE-20Improper Input Validation5 documents5 sources
Severity
5.3MEDIUMNVD
EPSS
0.6%
top 30.66%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Nx-os SoftwareCisco Nx-os
Timeline
PublishedAug 30
Latest updateMay 24

Description

A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to perform SNMP polling of an affected device, even if it is configured to deny SNMP traffic. The vulnerability is due to an incorrect length check when the configured ACL name is the maximum length, which is 32 ASCII characters. An attacker could exploit this vulnerability by performing SNMP polling of an

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

CVEListV5cisco/cisco_nx-os_softwareunspecified9.2(3)
NVDcisco/nx-os4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-jf8j-c5f4-7rp5: A vulnerability in the implementation of the Simple Network Management Protocol (SNMP) Access Control List (ACL) feature of Cisco NX-OS Software could2022-05-24
CVEList
Cisco NX-OS Software SNMP Access Control List Configuration Name Bypass Vulnerability2019-08-29

📋Vendor Advisories

1
Cisco
Cisco NX-OS Software SNMP Access Control List Configuration Name Bypass Vulnerability2019-08-28

💬Community

1
Bugzilla
CVE-2019-9687 podofo: heap-based buffer overflow in function PdfString::ConvertUTF16toUTF8 in base/PdfString.cpp2019-03-12
CVE-2019-1969 — Improper Input Validation in Cisco | cvebase