Lucene search

CiscoCVE-2019-1751

HistoryMar 28, 2019 - 12:29 a.m.

CVE-2019-1751

2019-03-2800:29:00

CWE-20

cisco

web.nvd.nist.gov

cisco

ios

nat64

vulnerability

cve-2019-1751

dos

nvd

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

EPSS

0.001

Percentile

48.3%

JSON

A vulnerability in the Network Address Translation 64 (NAT64) functions of Cisco IOS Software could allow an unauthenticated, remote attacker to cause either an interface queue wedge or a device reload. The vulnerability is due to the incorrect handling of certain IPv4 packet streams that are sent through the device. An attacker could exploit this vulnerability by sending specific IPv4 packet streams through the device. An exploit could allow the attacker to either cause an interface queue wedge or a device reload, resulting in a denial of service (DoS) condition.

Affected configurations

Nvd

Node

ciscoiosMatch15.4\(1\)cg1

ciscoiosMatch15.4\(1\)t

ciscoiosMatch15.4\(1\)t1

ciscoiosMatch15.4\(1\)t2

ciscoiosMatch15.4\(1\)t3

ciscoiosMatch15.4\(1\)t4

ciscoiosMatch15.4\(2\)t

ciscoiosMatch15.4\(2\)t1

ciscoiosMatch15.4\(2\)t2

ciscoiosMatch15.4\(2\)t3

ciscoiosMatch15.4\(2\)t4

ciscoiosMatch15.4\(3\)m

ciscoiosMatch15.4\(3\)m1

ciscoiosMatch15.4\(3\)m2

ciscoiosMatch15.4\(3\)m3

ciscoiosMatch15.4\(3\)m4

ciscoiosMatch15.4\(3\)m5

ciscoiosMatch15.4\(3\)m6

ciscoiosMatch15.4\(3\)m6a

ciscoiosMatch15.4\(3\)m7

ciscoiosMatch15.4\(3\)m7a

ciscoiosMatch15.4\(3\)m8

ciscoiosMatch15.4\(3\)m9

ciscoiosMatch15.4\(3\)m10

ciscoiosMatch15.5\(1\)t

ciscoiosMatch15.5\(1\)t1

ciscoiosMatch15.5\(1\)t2

ciscoiosMatch15.5\(1\)t3

ciscoiosMatch15.5\(1\)t4

ciscoiosMatch15.5\(2\)t

ciscoiosMatch15.5\(2\)t1

ciscoiosMatch15.5\(2\)t2

ciscoiosMatch15.5\(2\)t3

ciscoiosMatch15.5\(2\)t4

ciscoiosMatch15.5\(2\)xb

ciscoiosMatch15.5\(3\)m

ciscoiosMatch15.5\(3\)m0a

ciscoiosMatch15.5\(3\)m1

ciscoiosMatch15.5\(3\)m2

ciscoiosMatch15.5\(3\)m2a

ciscoiosMatch15.5\(3\)m3

ciscoiosMatch15.5\(3\)m4

ciscoiosMatch15.5\(3\)m4a

ciscoiosMatch15.5\(3\)m4b

ciscoiosMatch15.5\(3\)m4c

ciscoiosMatch15.5\(3\)m5

ciscoiosMatch15.5\(3\)m5a

ciscoiosMatch15.5\(3\)m6

ciscoiosMatch15.5\(3\)m6a

ciscoiosMatch15.5\(3\)m7

ciscoiosMatch15.5\(3\)m8

ciscoiosMatch15.6\(1\)t

ciscoiosMatch15.6\(1\)t0a

ciscoiosMatch15.6\(1\)t1

ciscoiosMatch15.6\(1\)t2

ciscoiosMatch15.6\(1\)t3

ciscoiosMatch15.6\(2\)t

ciscoiosMatch15.6\(2\)t0a

ciscoiosMatch15.6\(2\)t1

ciscoiosMatch15.6\(2\)t2

ciscoiosMatch15.6\(2\)t3

ciscoiosMatch15.6\(3\)m

ciscoiosMatch15.6\(3\)m0a

ciscoiosMatch15.6\(3\)m1

ciscoiosMatch15.6\(3\)m1a

ciscoiosMatch15.6\(3\)m1b

ciscoiosMatch15.6\(3\)m2

ciscoiosMatch15.6\(3\)m2a

ciscoiosMatch15.6\(3\)m3

ciscoiosMatch15.6\(3\)m3a

ciscoiosMatch15.6\(3\)m4

ciscoiosMatch15.6\(3\)m5

ciscoiosMatch15.7\(3\)m

ciscoiosMatch15.7\(3\)m0a

ciscoiosMatch15.7\(3\)m1

ciscoiosMatch15.7\(3\)m2

ciscoiosMatch15.7\(3\)m3

ciscoiosMatch15.8\(3\)m

ciscoiosMatch15.8\(3\)m0a

ciscoiosMatch15.8\(3\)m0b

VendorProductVersionCPE
ciscoios15.4(1)cg1cpe:2.3:o:cisco:ios:15.4\(1\)cg1:*:*:*:*:*:*:*
ciscoios15.4(1)tcpe:2.3:o:cisco:ios:15.4\(1\)t:*:*:*:*:*:*:*
ciscoios15.4(1)t1cpe:2.3:o:cisco:ios:15.4\(1\)t1:*:*:*:*:*:*:*
ciscoios15.4(1)t2cpe:2.3:o:cisco:ios:15.4\(1\)t2:*:*:*:*:*:*:*
ciscoios15.4(1)t3cpe:2.3:o:cisco:ios:15.4\(1\)t3:*:*:*:*:*:*:*
ciscoios15.4(1)t4cpe:2.3:o:cisco:ios:15.4\(1\)t4:*:*:*:*:*:*:*
ciscoios15.4(2)tcpe:2.3:o:cisco:ios:15.4\(2\)t:*:*:*:*:*:*:*
ciscoios15.4(2)t1cpe:2.3:o:cisco:ios:15.4\(2\)t1:*:*:*:*:*:*:*
ciscoios15.4(2)t2cpe:2.3:o:cisco:ios:15.4\(2\)t2:*:*:*:*:*:*:*
ciscoios15.4(2)t3cpe:2.3:o:cisco:ios:15.4\(2\)t3:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	15.4(1)cg1	cpe:2.3:o:cisco:ios:15.4\(1\)cg1:::::::*
cisco	ios	15.4(1)t	cpe:2.3:o:cisco:ios:15.4\(1\)t:::::::*
cisco	ios	15.4(1)t1	cpe:2.3:o:cisco:ios:15.4\(1\)t1:::::::*
cisco	ios	15.4(1)t2	cpe:2.3:o:cisco:ios:15.4\(1\)t2:::::::*
cisco	ios	15.4(1)t3	cpe:2.3:o:cisco:ios:15.4\(1\)t3:::::::*
cisco	ios	15.4(1)t4	cpe:2.3:o:cisco:ios:15.4\(1\)t4:::::::*
cisco	ios	15.4(2)t	cpe:2.3:o:cisco:ios:15.4\(2\)t:::::::*
cisco	ios	15.4(2)t1	cpe:2.3:o:cisco:ios:15.4\(2\)t1:::::::*
cisco	ios	15.4(2)t2	cpe:2.3:o:cisco:ios:15.4\(2\)t2:::::::*
cisco	ios	15.4(2)t3	cpe:2.3:o:cisco:ios:15.4\(2\)t3:::::::*

Rows per page:

1-10 of 801

CNA Affected

[
  {
    "product": "Cisco IOS Software",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "15.x"
      }
    ]
  }
]

References

www.securityfocus.com/bid/107601

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nat64

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

8.6

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

EPSS

0.001

Percentile

48.3%

JSON

Related for CVE-2019-1751