ID

VAR-201905-0584


CVE

CVE-2019-1695


TITLE

Cisco Adaptive Security Appliance Software and Firepower Threat Defense Software access control vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2019-003891

DESCRIPTION

A vulnerability in the detection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent attacker to send data directly to the kernel of an affected device. The vulnerability exists because the software improperly filters Ethernet frames sent to an affected device. An attacker could exploit this vulnerability by sending crafted packets to the management interface of an affected device. A successful exploit could allow the attacker to bypass the Layer 2 (L2) filters and send data directly to the kernel of the affected device. A malicious frame successfully delivered would make the target device generate a specific syslog entry. Multiple Cisco Products are prone to a remote security-bypass vulnerability. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This issue is being tracked by Cisco Bug CSCvm75358. This vulnerability stems from network systems or products not properly restricting access to resources from unauthorized roles

Trust: 1.98

sources: NVD: CVE-2019-1695 // JVNDB: JVNDB-2019-003891 // BID: 108173 // VULHUB: VHN-149147

AFFECTED PRODUCTS

vendor:ciscomodel:adaptive security appliance softwarescope:ltversion:9.9.2.50

Trust: 1.0

vendor:ciscomodel:firepower threat defensescope:gteversion:6.2.1

Trust: 1.0

vendor:ciscomodel:adaptive security appliance softwarescope:ltversion:9.10.1.17

Trust: 1.0

vendor:ciscomodel:adaptive security appliance softwarescope:ltversion:9.8.4

Trust: 1.0

vendor:ciscomodel:adaptive security appliance softwarescope:gteversion:9.10

Trust: 1.0

vendor:ciscomodel:firepower threat defensescope:gteversion:6.3.0

Trust: 1.0

vendor:ciscomodel:firepower threat defensescope:ltversion:6.2.3.12

Trust: 1.0

vendor:ciscomodel:firepower threat defensescope:ltversion:6.3.0.3

Trust: 1.0

vendor:ciscomodel:adaptive security appliance softwarescope:gteversion:9.9

Trust: 1.0

vendor:ciscomodel:adaptive security appliance softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower threat defense softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower threat defense softwarescope:eqversion:6.3

Trust: 0.3

vendor:ciscomodel:firepower threat defense softwarescope:eqversion:6.2.3

Trust: 0.3

vendor:ciscomodel:firepower threat defense softwarescope:eqversion:6.2.2

Trust: 0.3

vendor:ciscomodel:firepower threat defense softwarescope:eqversion:6.2.1

Trust: 0.3

vendor:ciscomodel:firepower seriesscope:eqversion:90002.4(1.71)

Trust: 0.3

vendor:ciscomodel:firepower seriesscope:eqversion:21000

Trust: 0.3

vendor:ciscomodel:adaptive security appliance softwarescope:eqversion:9.9

Trust: 0.3

vendor:ciscomodel:adaptive security appliance softwarescope:eqversion:9.8

Trust: 0.3

vendor:ciscomodel:adaptive security appliance softwarescope:eqversion:9.10

Trust: 0.3

vendor:ciscomodel:firepower threat defense softwarescope:neversion:6.3.0.3

Trust: 0.3

vendor:ciscomodel:firepower threat defense softwarescope:neversion:6.2.3.12

Trust: 0.3

vendor:ciscomodel:adaptive security appliance softwarescope:neversion:9.8.4

Trust: 0.3

vendor:ciscomodel:adaptive security appliance softwarescope:neversion:9.9.2.50

Trust: 0.3

vendor:ciscomodel:adaptive security appliance softwarescope:neversion:9.10.1.17

Trust: 0.3

sources: BID: 108173 // JVNDB: JVNDB-2019-003891 // NVD: CVE-2019-1695

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-1695
value: MEDIUM

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1695
value: MEDIUM

Trust: 1.0

NVD: CVE-2019-1695
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201905-027
value: MEDIUM

Trust: 0.6

VULHUB: VHN-149147
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-1695
severity: MEDIUM
baseScore: 6.1
vectorString: AV:A/AC:L/AU:N/C:N/I:C/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: COMPLETE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-149147
severity: MEDIUM
baseScore: 6.1
vectorString: AV:A/AC:L/AU:N/C:N/I:C/A:N
accessVector: ADJACENT_NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: COMPLETE
availabilityImpact: NONE
exploitabilityScore: 6.5
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-1695
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 3.6
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1695
baseSeverity: MEDIUM
baseScore: 4.3
vectorString: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector: ADJACENT
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 2.8
impactScore: 1.4
version: 3.0

Trust: 1.0

NVD: CVE-2019-1695
baseSeverity: MEDIUM
baseScore: 6.5
vectorString: CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
attackVector: ADJACENT NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: HIGH
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-149147 // JVNDB: JVNDB-2019-003891 // CNNVD: CNNVD-201905-027 // NVD: CVE-2019-1695 // NVD: CVE-2019-1695

PROBLEMTYPE DATA

problemtype:CWE-284

Trust: 1.9

problemtype:NVD-CWE-Other

Trust: 1.0

sources: VULHUB: VHN-149147 // JVNDB: JVNDB-2019-003891 // NVD: CVE-2019-1695

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-201905-027

TYPE

other

Trust: 0.6

sources: CNNVD: CNNVD-201905-027

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-003891

PATCH

title:cisco-sa-20190501-asa-ftd-bypassurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-asa-ftd-bypass

Trust: 0.8

title:Cisco Firepower 2100 Series Adaptive Security Appliance Software and Firepower Threat Defense Software Fixes for access control error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=92178

Trust: 0.6

sources: JVNDB: JVNDB-2019-003891 // CNNVD: CNNVD-201905-027

EXTERNAL IDS

db:NVDid:CVE-2019-1695

Trust: 2.8

db:BIDid:108173

Trust: 2.0

db:JVNDBid:JVNDB-2019-003891

Trust: 0.8

db:CNNVDid:CNNVD-201905-027

Trust: 0.7

db:AUSCERTid:ESB-2019.1510.2

Trust: 0.6

db:VULHUBid:VHN-149147

Trust: 0.1

sources: VULHUB: VHN-149147 // BID: 108173 // JVNDB: JVNDB-2019-003891 // CNNVD: CNNVD-201905-027 // NVD: CVE-2019-1695

REFERENCES

url:http://www.securityfocus.com/bid/108173

Trust: 2.3

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190501-asa-ftd-bypass

Trust: 2.0

url:https://nvd.nist.gov/vuln/detail/cve-2019-1695

Trust: 1.4

url:http://www.cisco.com/

Trust: 0.9

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1695

Trust: 0.8

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190501-asa-ftd-ike-dos

Trust: 0.6

url:https://www.auscert.org.au/bulletins/80090

Trust: 0.6

url:https://vigilance.fr/vulnerability/cisco-asa-privilege-escalation-via-layer-2-filtering-bypass-29194

Trust: 0.6

sources: VULHUB: VHN-149147 // BID: 108173 // JVNDB: JVNDB-2019-003891 // CNNVD: CNNVD-201905-027 // NVD: CVE-2019-1695

CREDITS

Cisco

Trust: 0.9

sources: BID: 108173 // CNNVD: CNNVD-201905-027

SOURCES

db:VULHUBid:VHN-149147
db:BIDid:108173
db:JVNDBid:JVNDB-2019-003891
db:CNNVDid:CNNVD-201905-027
db:NVDid:CVE-2019-1695

LAST UPDATE DATE

2024-08-14T13:45:03.518000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-149147date:2020-10-07T00:00:00
db:BIDid:108173date:2019-05-01T00:00:00
db:JVNDBid:JVNDB-2019-003891date:2019-05-23T00:00:00
db:CNNVDid:CNNVD-201905-027date:2020-10-09T00:00:00
db:NVDid:CVE-2019-1695date:2023-08-15T15:24:56.340

SOURCES RELEASE DATE

db:VULHUBid:VHN-149147date:2019-05-03T00:00:00
db:BIDid:108173date:2019-05-01T00:00:00
db:JVNDBid:JVNDB-2019-003891date:2019-05-23T00:00:00
db:CNNVDid:CNNVD-201905-027date:2019-05-01T00:00:00
db:NVDid:CVE-2019-1695date:2019-05-03T15:29:01.103