Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cve[email protected]CVE-2019-1909
HistoryJul 06, 2019 - 2:15 a.m.

CVE-2019-1909

2019-07-0602:15:11
CWE-20
[email protected]
web.nvd.nist.gov
401
cisco
vulnerability
denial of service
bgp
remote attacker
nvd
cve-2019-1909

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

5.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.7%

JSON

A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected system. The vulnerability is due to incorrect processing of certain BGP update messages. An attacker could exploit this vulnerability by sending BGP update messages that include a specific set of attributes to be processed by an affected system. A successful exploit could allow the attacker to cause the BGP process to restart unexpectedly, resulting in a DoS condition. The Cisco implementation of BGP accepts incoming BGP traffic from explicitly defined peers only. To exploit this vulnerability, the malicious BGP update message would need to come from a configured, valid BGP peer or would need to be injected by the attacker into the victim’s BGP network on an existing, valid TCP connection to a BGP peer.

Affected configurations

NVD
Node
ciscoios_xrRange4.3.16.6.2
AND
ciscoasr_9001Match-
OR
ciscoasr_9006Match-
OR
ciscoasr_9010Match-
OR
ciscoasr_9901Match-
OR
ciscoasr_9904Match-
OR
ciscoasr_9906Match-
OR
ciscoasr_9910Match-
OR
ciscoasr_9912Match-
OR
ciscoasr_9920Match-
CPENameOperatorVersion
cisco:ios_xrcisco ios xrlt6.6.2

CNA Affected

[
  {
    "product": "Cisco IOS XR Software ",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "6.4.2",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Related

prion 1
nvd 1
cisco 1
cvelist 1
nessus 1
prion
prion
Design/Logic Flaw
2019-07-06 02:15:00
nvd
nvd
CVE-2019-1909
2019-07-06 02:15:11
cisco
cisco
Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability
2019-07-03 16:00:00
cvelist
cvelist
CVE-2019-1909 Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability
2019-07-03 00:00:00
nessus
nessus
Cisco IOS XR Software Border Gateway Protocol Denial of Service Vulnerability
2019-08-22 00:00:00

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:N/I:N/A:P

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

5.9 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.7%

JSON
Related for CVE-2019-1909
prion1nvd1cisco1cvelist1nessus1