ID

VAR-201911-1053


CVE

CVE-2019-1980


TITLE

plural Cisco Authentication vulnerabilities in products

Trust: 0.8

sources: JVNDB: JVNDB-2019-011704

DESCRIPTION

A vulnerability in the protocol detection component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to improper detection of the initial use of a protocol on a nonstandard port. An attacker could exploit this vulnerability by sending traffic on a nonstandard port for the protocol in use through an affected device. An exploit could allow the attacker to bypass filtering and deliver malicious requests to protected systems that would otherwise be blocked. Once the initial protocol flow on the nonstandard port is detected, future flows on the nonstandard port will be successfully detected and handled as configured by the applied policy. Cisco Firepower Management Center (FMC) and others are products of Cisco (Cisco)

Trust: 1.8

sources: NVD: CVE-2019-1980 // JVNDB: JVNDB-2019-011704 // VULHUB: VHN-152282 // VULMON: CVE-2019-1980

AFFECTED PRODUCTS

vendor:ciscomodel:firepower management centerscope:lteversion:2.9.13.6

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:2.9.16

Trust: 1.0

vendor:ciscomodel:firepower threat defensescope:eqversion:*

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:gteversion:2.9.13

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:gteversion:2.9.12

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:eqversion:2.9.15

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:gteversion:2.9.14.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:lteversion:2.9.14.5

Trust: 1.0

vendor:ciscomodel:firepower services software for asascope:eqversion:*

Trust: 1.0

vendor:ciscomodel:firepower management centerscope:lteversion:2.9.12.15

Trust: 1.0

vendor:ciscomodel:firepower management centerscope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower services for asascope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower threat defense softwarescope: - version: -

Trust: 0.8

sources: JVNDB: JVNDB-2019-011704 // NVD: CVE-2019-1980

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2019-1980
value: MEDIUM

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1980
value: MEDIUM

Trust: 1.0

NVD: CVE-2019-1980
value: MEDIUM

Trust: 0.8

CNNVD: CNNVD-201908-1155
value: MEDIUM

Trust: 0.6

VULHUB: VHN-152282
value: MEDIUM

Trust: 0.1

VULMON: CVE-2019-1980
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2019-1980
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.9

VULHUB: VHN-152282
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: PARTIAL
availabilityImpact: NONE
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2019-1980
baseSeverity: MEDIUM
baseScore: 5.3
vectorString: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 1.4
version: 3.1

Trust: 1.0

ykramarz@cisco.com: CVE-2019-1980
baseSeverity: MEDIUM
baseScore: 5.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: CHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: 3.9
impactScore: 1.4
version: 3.0

Trust: 1.0

NVD: CVE-2019-1980
baseSeverity: MEDIUM
baseScore: 5.3
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: LOW
availabilityImpact: NONE
exploitabilityScore: NONE
impactScore: NONE
version: 3.0

Trust: 0.8

sources: VULHUB: VHN-152282 // VULMON: CVE-2019-1980 // JVNDB: JVNDB-2019-011704 // CNNVD: CNNVD-201908-1155 // NVD: CVE-2019-1980 // NVD: CVE-2019-1980

PROBLEMTYPE DATA

problemtype:CWE-287

Trust: 1.9

problemtype:CWE-264

Trust: 1.8

sources: VULHUB: VHN-152282 // JVNDB: JVNDB-2019-011704 // NVD: CVE-2019-1980

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201908-1155

TYPE

permissions and access control issues

Trust: 0.6

sources: CNNVD: CNNVD-201908-1155

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-011704

PATCH

title:cisco-sa-20190816-ftd-nspdurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190816-ftd-nspd

Trust: 0.8

title:Cisco: Cisco Firepower Threat Defense Software Nonstandard Protocol Detection Bypass Vulnerabilityurl:https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts&qid=cisco-sa-20190816-ftd-nspd

Trust: 0.1

sources: VULMON: CVE-2019-1980 // JVNDB: JVNDB-2019-011704

EXTERNAL IDS

db:NVDid:CVE-2019-1980

Trust: 2.6

db:JVNDBid:JVNDB-2019-011704

Trust: 0.8

db:CNNVDid:CNNVD-201908-1155

Trust: 0.7

db:AUSCERTid:ESB-2019.3163

Trust: 0.6

db:VULHUBid:VHN-152282

Trust: 0.1

db:VULMONid:CVE-2019-1980

Trust: 0.1

sources: VULHUB: VHN-152282 // VULMON: CVE-2019-1980 // JVNDB: JVNDB-2019-011704 // CNNVD: CNNVD-201908-1155 // NVD: CVE-2019-1980

REFERENCES

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190816-ftd-nspd

Trust: 1.9

url:https://nvd.nist.gov/vuln/detail/cve-2019-1980

Trust: 1.4

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1980

Trust: 0.8

url:https://www.auscert.org.au/bulletins/esb-2019.3163/

Trust: 0.6

url:https://cwe.mitre.org/data/definitions/287.html

Trust: 0.1

url:https://nvd.nist.gov

Trust: 0.1

sources: VULHUB: VHN-152282 // VULMON: CVE-2019-1980 // JVNDB: JVNDB-2019-011704 // CNNVD: CNNVD-201908-1155 // NVD: CVE-2019-1980

CREDITS

NSS Labs

Trust: 0.6

sources: CNNVD: CNNVD-201908-1155

SOURCES

db:VULHUBid:VHN-152282
db:VULMONid:CVE-2019-1980
db:JVNDBid:JVNDB-2019-011704
db:CNNVDid:CNNVD-201908-1155
db:NVDid:CVE-2019-1980

LAST UPDATE DATE

2024-08-14T13:55:00.959000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-152282date:2019-11-08T00:00:00
db:VULMONid:CVE-2019-1980date:2019-11-08T00:00:00
db:JVNDBid:JVNDB-2019-011704date:2019-11-15T00:00:00
db:CNNVDid:CNNVD-201908-1155date:2019-11-12T00:00:00
db:NVDid:CVE-2019-1980date:2019-11-08T20:09:45.717

SOURCES RELEASE DATE

db:VULHUBid:VHN-152282date:2019-11-05T00:00:00
db:VULMONid:CVE-2019-1980date:2019-11-05T00:00:00
db:JVNDBid:JVNDB-2019-011704date:2019-11-15T00:00:00
db:CNNVDid:CNNVD-201908-1155date:2019-08-16T00:00:00
db:NVDid:CVE-2019-1980date:2019-11-05T20:15:11.690