Lucene search

CiscoCVE-2019-12658

HistorySep 25, 2019 - 9:15 p.m.

CVE-2019-12658

2019-09-2521:15:10

CWE-400

cisco

web.nvd.nist.gov

vulnerability

filesystem

resource management

cisco

ios xe software

unauthenticated

remote attacker

denial of service

dos

nvd

cve-2019-12658

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

High

EPSS

0.002

Percentile

52.6%

JSON

A vulnerability in the filesystem resource management code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to exhaust filesystem resources on an affected device and cause a denial of service (DoS) condition. The vulnerability is due to ineffective management of the underlying filesystem resources. An attacker could exploit this vulnerability by performing specific actions that result in messages being sent to specific operating system log files. A successful exploit could allow the attacker to exhaust available filesystem space on an affected device. This could cause the device to crash and reload, resulting in a DoS condition for clients whose network traffic is transiting the device. Upon reload of the device, the impacted filesystem space is cleared, and the device will return to normal operation. However, continued exploitation of this vulnerability could cause subsequent forced crashes and reloads, which could lead to an extended DoS condition.

Affected configurations

Nvd

Node

ciscoios_xeMatch16.6.1

ciscoios_xeMatch16.8.1

AND

cisco1100_integrated_services_rMatch-

cisco4221_integrated_services_rMatch-

cisco4321_integrated_services_rMatch-

cisco4331_integrated_services_rMatch-

cisco4351_integrated_services_rMatch-

cisco4431_integrated_services_rMatch-

cisco4451-x_integrated_services_rMatch-

ciscoasr_1000Match-

ciscoasr_1001-hx_rMatch-

ciscoasr_1001-x_rMatch-

ciscoasr_1002-hx_rMatch-

ciscoasr_1002-x_rMatch-

ciscoasr_900Match-

ciscoasr_900_Match-

ciscoasr_920-10sz-pd_rMatch-

ciscoasr_920-12cz-a_rMatch-

ciscoasr_920-12cz-d_rMatch-

ciscoasr_920-12sz-im_rMatch-

ciscoasr_920-24sz-im_rMatch-

ciscoasr_920-24sz-m_rMatch-

ciscoasr_920-24tz-m_rMatch-

ciscoasr_920-4sz-a_rMatch-

ciscoasr_920-4sz-d_rMatch-

ciscocatalyst_3650-12x48uq-eMatch-

ciscocatalyst_3650-12x48uq-lMatch-

ciscocatalyst_3650-12x48uq-sMatch-

ciscocatalyst_3650-12x48ur-eMatch-

ciscocatalyst_3650-12x48ur-lMatch-

ciscocatalyst_3650-12x48ur-sMatch-

ciscocatalyst_3650-12x48uz-eMatch-

ciscocatalyst_3650-24pd-eMatch-

ciscocatalyst_3650-24pd-lMatch-

ciscocatalyst_3650-24pd-sMatch-

ciscocatalyst_3650-24pdm-eMatch-

ciscocatalyst_3650-24pdm-lMatch-

ciscocatalyst_3650-24pdm-sMatch-

ciscocatalyst_3650-24ps-eMatch-

ciscocatalyst_3650-24ps-lMatch-

ciscocatalyst_3650-24ps-sMatch-

ciscocatalyst_3650-24td-eMatch-

ciscocatalyst_3650-24td-lMatch-

ciscocatalyst_3650-24td-sMatch-

ciscocatalyst_3650-24ts-eMatch-

ciscocatalyst_3650-24ts-lMatch-

ciscocatalyst_3650-24ts-sMatch-

ciscocatalyst_3650-48fd-eMatch-

ciscocatalyst_3650-48fd-lMatch-

ciscocatalyst_3650-48fd-sMatch-

ciscocatalyst_3650-48fq-eMatch-

ciscocatalyst_3650-48fq-lMatch-

ciscocatalyst_3650-48fq-sMatch-

ciscocatalyst_3650-48fqm-eMatch-

ciscocatalyst_3650-48fqm-lMatch-

ciscocatalyst_3650-48fqm-sMatch-

ciscocatalyst_3650-48fs-eMatch-

ciscocatalyst_3650-48fs-lMatch-

ciscocatalyst_3650-48fs-sMatch-

ciscocatalyst_3650-48pd-eMatch-

ciscocatalyst_3650-48pd-lMatch-

ciscocatalyst_3650-48pd-sMatch-

ciscocatalyst_3650-48pq-eMatch-

ciscocatalyst_3650-48pq-lMatch-

ciscocatalyst_3650-48pq-sMatch-

ciscocatalyst_3650-48ps-eMatch-

ciscocatalyst_3650-48ps-lMatch-

ciscocatalyst_3650-48ps-sMatch-

ciscocatalyst_3650-48td-eMatch-

ciscocatalyst_3650-48td-lMatch-

ciscocatalyst_3650-48td-sMatch-

ciscocatalyst_3650-48tq-eMatch-

ciscocatalyst_3650-48tq-lMatch-

ciscocatalyst_3650-48tq-sMatch-

ciscocatalyst_3650-48ts-eMatch-

ciscocatalyst_3650-48ts-lMatch-

ciscocatalyst_3650-48ts-sMatch-

ciscocatalyst_3650-8x24uq-eMatch-

ciscocatalyst_3650-8x24uq-lMatch-

ciscocatalyst_3650-8x24uq-sMatch-

ciscocatalyst_3850-12s-eMatch-

ciscocatalyst_3850-12s-sMatch-

ciscocatalyst_3850-12xs-eMatch-

ciscocatalyst_3850-12xs-sMatch-

ciscocatalyst_3850-16xs-eMatch-

ciscocatalyst_3850-16xs-sMatch-

ciscocatalyst_3850-24p-eMatch-

ciscocatalyst_3850-24p-lMatch-

ciscocatalyst_3850-24p-sMatch-

ciscocatalyst_3850-24s-eMatch-

ciscocatalyst_3850-24s-sMatch-

ciscocatalyst_3850-24t-eMatch-

ciscocatalyst_3850-24t-lMatch-

ciscocatalyst_3850-24t-sMatch-

ciscocatalyst_3850-24u-eMatch-

ciscocatalyst_3850-24u-lMatch-

ciscocatalyst_3850-24u-sMatch-

ciscocatalyst_3850-24xs-eMatch-

ciscocatalyst_3850-24xs-sMatch-

ciscocatalyst_3850-24xu-eMatch-

ciscocatalyst_3850-24xu-lMatch-

ciscocatalyst_3850-24xu-sMatch-

ciscocatalyst_3850-32xs-eMatch-

ciscocatalyst_3850-32xs-sMatch-

ciscocatalyst_3850-48f-eMatch-

ciscocatalyst_3850-48f-lMatch-

ciscocatalyst_3850-48f-sMatch-

ciscocatalyst_3850-48p-eMatch-

ciscocatalyst_3850-48p-lMatch-

ciscocatalyst_3850-48p-sMatch-

ciscocatalyst_3850-48t-eMatch-

ciscocatalyst_3850-48t-lMatch-

ciscocatalyst_3850-48t-sMatch-

ciscocatalyst_3850-48u-eMatch-

ciscocatalyst_3850-48u-lMatch-

ciscocatalyst_3850-48u-sMatch-

ciscocatalyst_3850-48xs-eMatch-

ciscocatalyst_3850-48xs-f-eMatch-

ciscocatalyst_3850-48xs-f-sMatch-

ciscocatalyst_3850-48xs-sMatch-

ciscocatalyst_9300Match-

ciscocatalyst_9300-24p-aMatch-

ciscocatalyst_9300-24p-eMatch-

ciscocatalyst_9300-24t-aMatch-

ciscocatalyst_9300-24t-eMatch-

ciscocatalyst_9300-24u-aMatch-

ciscocatalyst_9300-24u-eMatch-

ciscocatalyst_9300-48p-aMatch-

ciscocatalyst_9300-48p-eMatch-

ciscocatalyst_9300-48t-aMatch-

ciscocatalyst_9300-48t-eMatch-

ciscocatalyst_9300-48u-aMatch-

ciscocatalyst_9300-48u-eMatch-

ciscocatalyst_9400_supervisor_engine-1Match-

ciscocatalyst_9407rMatch-

ciscocatalyst_9410rMatch-

ciscocatalyst_9500Match-

ciscocatalyst_c3850-12x48u-eMatch-

ciscocatalyst_c3850-12x48u-lMatch-

ciscocatalyst_c3850-12x48u-sMatch-

ciscocatalyst_c9500-12q-aMatch-

ciscocatalyst_c9500-12q-eMatch-

ciscocatalyst_c9500-24q-aMatch-

ciscocatalyst_c9500-24q-eMatch-

ciscocatalyst_c9500-40x-aMatch-

ciscocatalyst_c9500-40x-eMatch-

ciscocloud_services_r_1000vMatch-

cisconcs_4201Match-

cisconcs_4202Match-

cisconcs_4206Match-

cisconcs_4216Match-

cisconetwork_convergence_system_520Match-

VendorProductVersionCPE
ciscoios_xe16.6.1cpe:2.3:o:cisco:ios_xe:16.6.1:*:*:*:*:*:*:*
ciscoios_xe16.8.1cpe:2.3:o:cisco:ios_xe:16.8.1:*:*:*:*:*:*:*
cisco1100_integrated_services_r-cpe:2.3:h:cisco:1100_integrated_services_r:-:*:*:*:*:*:*:*
cisco4221_integrated_services_r-cpe:2.3:h:cisco:4221_integrated_services_r:-:*:*:*:*:*:*:*
cisco4321_integrated_services_r-cpe:2.3:h:cisco:4321_integrated_services_r:-:*:*:*:*:*:*:*
cisco4331_integrated_services_r-cpe:2.3:h:cisco:4331_integrated_services_r:-:*:*:*:*:*:*:*
cisco4351_integrated_services_r-cpe:2.3:h:cisco:4351_integrated_services_r:-:*:*:*:*:*:*:*
cisco4431_integrated_services_r-cpe:2.3:h:cisco:4431_integrated_services_r:-:*:*:*:*:*:*:*
cisco4451-x_integrated_services_r-cpe:2.3:h:cisco:4451-x_integrated_services_r:-:*:*:*:*:*:*:*
ciscoasr_1000-cpe:2.3:h:cisco:asr_1000:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	16.6.1	cpe:2.3:o:cisco:ios_xe:16.6.1:::::::*
cisco	ios_xe	16.8.1	cpe:2.3:o:cisco:ios_xe:16.8.1:::::::*
cisco	1100_integrated_services_r	-	cpe:2.3:h:cisco:1100_integrated_services_r:-:::::::*
cisco	4221_integrated_services_r	-	cpe:2.3:h:cisco:4221_integrated_services_r:-:::::::*
cisco	4321_integrated_services_r	-	cpe:2.3:h:cisco:4321_integrated_services_r:-:::::::*
cisco	4331_integrated_services_r	-	cpe:2.3:h:cisco:4331_integrated_services_r:-:::::::*
cisco	4351_integrated_services_r	-	cpe:2.3:h:cisco:4351_integrated_services_r:-:::::::*
cisco	4431_integrated_services_r	-	cpe:2.3:h:cisco:4431_integrated_services_r:-:::::::*
cisco	4451-x_integrated_services_r	-	cpe:2.3:h:cisco:4451-x_integrated_services_r:-:::::::*
cisco	asr_1000	-	cpe:2.3:h:cisco:asr_1000:-:::::::*

Rows per page:

1-10 of 1521

CNA Affected

[
  {
    "product": "Cisco IOS XE Software 16.1.1",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "n/a",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-iosxe-fsdos

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

7.6

Confidence

High

EPSS

0.002

Percentile

52.6%

JSON

Related for CVE-2019-12658