ID
VAR-201903-0567
CVE
CVE-2019-1751
TITLE
Cisco IOS Software input validation vulnerability
Trust: 0.8
DESCRIPTION
A vulnerability in the Network Address Translation 64 (NAT64) functions of Cisco IOS Software could allow an unauthenticated, remote attacker to cause either an interface queue wedge or a device reload. The vulnerability is due to the incorrect handling of certain IPv4 packet streams that are sent through the device. An attacker could exploit this vulnerability by sending specific IPv4 packet streams through the device. An exploit could allow the attacker to either cause an interface queue wedge or a device reload, resulting in a denial of service (DoS) condition. Cisco IOS The software contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Cisco IOS Software is prone to a denial-of-service vulnerability. Attackers can exploit this issue to cause denial-of-service conditions. This issue is being tracked by Cisco Bug ID CSCvk61580. Cisco IOS is an operating system developed by Cisco for its network equipment
Trust: 1.98
AFFECTED PRODUCTS
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(2\)t | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(2\)t0a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(1\)t2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m4c | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(2\)t1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(2\)t3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m0a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(1\)t2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(2\)t1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m7 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.7\(3\)m3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m8 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(1\)t3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(1\)t4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(1\)t0a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(2\)t3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m3a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.7\(3\)m | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.8\(3\)m0b | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m4a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m1a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(1\)t | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(1\)t1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m2a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.7\(3\)m1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.8\(3\)m | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(2\)t | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m6 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m5a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(2\)t2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(2\)t3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m9 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m5 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.7\(3\)m2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m6a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.7\(3\)m0a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m10 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(1\)t3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(2\)xb | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(1\)t1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(1\)t3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m5 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m6 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m1b | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(1\)cg1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(2\)t | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m4b | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(1\)t4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(1\)t1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(1\)t2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m5 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(2\)t4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(2\)t2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(2\)t1 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m2a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(2\)t2 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(2\)t4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m6a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m0a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(1\)t | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m7 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m4 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(3\)m3 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.5\(3\)m8 | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.6\(1\)t | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.4\(3\)m7a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | eq | version: | 15.8\(3\)m0a | Trust: 1.0 |
| vendor: | cisco | model: | ios | scope: | - | version: | - | Trust: 0.8 |
| vendor: | cisco | model: | ios software | scope: | eq | version: | 0 | Trust: 0.3 |
CVSS
SEVERITY | CVSSV2 | CVSSV3 | |||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|
|
|
PROBLEMTYPE DATA
| problemtype: | CWE-20 | Trust: 1.9 |
THREAT TYPE
remote
Trust: 0.6
TYPE
input validation error
Trust: 0.6
CONFIGURATIONS
PATCH
| title: | cisco-sa-20190327-nat64 | url: | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nat64 | Trust: 0.8 |
| title: | Cisco IOS Enter the fix for the verification vulnerability | url: | http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=90519 | Trust: 0.6 |
EXTERNAL IDS
| db: | NVD | id: | CVE-2019-1751 | Trust: 2.8 |
| db: | BID | id: | 107601 | Trust: 2.0 |
| db: | JVNDB | id: | JVNDB-2019-002971 | Trust: 0.8 |
| db: | CNNVD | id: | CNNVD-201903-1104 | Trust: 0.7 |
| db: | VULHUB | id: | VHN-149763 | Trust: 0.1 |
REFERENCES
| url: | http://www.securityfocus.com/bid/107601 | Trust: 2.3 |
| url: | https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190327-nat64 | Trust: 2.0 |
| url: | https://nvd.nist.gov/vuln/detail/cve-2019-1751 | Trust: 1.4 |
| url: | https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1751 | Trust: 0.8 |
| url: | https://vigilance.fr/vulnerability/cisco-ios-ios-xe-multiple-vulnerabilities-28888 | Trust: 0.6 |
| url: | http://www.cisco.com/ | Trust: 0.3 |
| url: | http://www.cisco.com/c/en/us/products/ios-nx-os-software/ios-xe/index.html | Trust: 0.3 |
CREDITS
Cisco
Trust: 0.9
SOURCES
| db: | VULHUB | id: | VHN-149763 |
| db: | BID | id: | 107601 |
| db: | JVNDB | id: | JVNDB-2019-002971 |
| db: | CNNVD | id: | CNNVD-201903-1104 |
| db: | NVD | id: | CVE-2019-1751 |
LAST UPDATE DATE
2024-08-14T13:55:36.007000+00:00
SOURCES UPDATE DATE
| db: | VULHUB | id: | VHN-149763 | date: | 2019-10-09T00:00:00 |
| db: | BID | id: | 107601 | date: | 2019-03-27T00:00:00 |
| db: | JVNDB | id: | JVNDB-2019-002971 | date: | 2019-04-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201903-1104 | date: | 2019-10-17T00:00:00 |
| db: | NVD | id: | CVE-2019-1751 | date: | 2019-10-09T23:47:57.940 |
SOURCES RELEASE DATE
| db: | VULHUB | id: | VHN-149763 | date: | 2019-03-28T00:00:00 |
| db: | BID | id: | 107601 | date: | 2019-03-27T00:00:00 |
| db: | JVNDB | id: | JVNDB-2019-002971 | date: | 2019-04-26T00:00:00 |
| db: | CNNVD | id: | CNNVD-201903-1104 | date: | 2019-03-27T00:00:00 |
| db: | NVD | id: | CVE-2019-1751 | date: | 2019-03-28T00:29:00.780 |