Lucene search

[email protected]CVE-2019-1967

HistoryAug 30, 2019 - 9:15 a.m.

CVE-2019-1967

2019-08-3009:15:20

CWE-400

CWE-399

[email protected]

web.nvd.nist.gov

cisco

nx-os

software

vulnerability

ntp

network time protocol

dos

cve-2019-1967

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.7%

JSON

A vulnerability in the Network Time Protocol (NTP) feature of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to excessive use of system resources when the affected device is logging a drop action for received MODE_PRIVATE (Mode 7) NTP packets. An attacker could exploit this vulnerability by flooding the device with a steady stream of Mode 7 NTP packets. A successful exploit could allow the attacker to cause high CPU and memory usage on the affected device, which could cause internal system processes to restart or cause the affected device to unexpectedly reload. Note: The NTP feature is enabled by default.

Affected configurations

NVD

Node

cisconx-osMatch6.2

cisconx-osMatch7.3

cisconx-osMatch8.1

cisconx-osMatch8.2

cisconx-osMatch8.3

AND

ciscomds_9000Match-

ciscomds_9100Match-

ciscomds_9140Match-

ciscomds_9200Match-

ciscomds_9500Match-

ciscomds_9700Match-

Node

cisconx-osMatch6.0\(2\)a8\(9.7\)

cisconx-osMatch6.0\(2\)u6

cisconx-osMatch7.0\(3\)i

cisconx-osMatch9.2

cisconx-osMatch9.2\(1\)

AND

cisconexus_3016Match-

cisconexus_3048Match-

cisconexus_3064Match-

cisconexus_3064-tMatch-

cisconexus_31108pc-vMatch-

cisconexus_31108tc-vMatch-

cisconexus_31128pqMatch-

cisconexus_3132c-zMatch-

cisconexus_3132qMatch-

cisconexus_3132q-vMatch-

cisconexus_3132q-xlMatch-

cisconexus_3164qMatch-

cisconexus_3172Match-

cisconexus_3172pq-xlMatch-

cisconexus_3172tqMatch-

cisconexus_3172tq-32tMatch-

cisconexus_3172tq-xlMatch-

cisconexus_3232cMatch-

cisconexus_3264c-eMatch-

cisconexus_3264qMatch-

cisconexus_3408-sMatch-

cisconexus_34180ycMatch-

cisconexus_3432d-sMatch-

cisconexus_3464cMatch-

cisconexus_9000vMatch-

cisconexus_92160yc-xMatch-

cisconexus_92300ycMatch-

cisconexus_92304qcMatch-

cisconexus_92348gc-xMatch-

cisconexus_9236cMatch-

cisconexus_9272qMatch-

cisconexus_93108tc-exMatch-

cisconexus_93108tc-fxMatch-

cisconexus_93120txMatch-

cisconexus_93128txMatch-

cisconexus_93180lc-exMatch-

cisconexus_93180yc-exMatch-

cisconexus_93180yc-fxMatch-

cisconexus_93216tc-fx2Match-

cisconexus_93240yc-fx2Match-

cisconexus_9332cMatch-

cisconexus_9332pqMatch-

cisconexus_93360yc-fx2Match-

cisconexus_9336c-fx2Match-

cisconexus_9336pq_aci_spineMatch-

cisconexus_9348gc-fxpMatch-

cisconexus_9364cMatch-

cisconexus_9372pxMatch-

cisconexus_9372px-eMatch-

cisconexus_9372txMatch-

cisconexus_9372tx-eMatch-

cisconexus_9396pxMatch-

cisconexus_9396txMatch-

Node

cisconx-osMatch6.0\(2\)a8

cisconx-osMatch6.0\(2\)a8\(9.7\)

cisconx-osMatch7.0\(3\)i7

cisconx-osMatch9.2

AND

cisconexus_3524Match-

cisconexus_3524-xMatch-

cisconexus_3524-xlMatch-

cisconexus_3548Match-

cisconexus_3548-xMatch-

cisconexus_3548-xlMatch-

Node

cisconx-osMatch6.0\(2\)a8\(9.7\)

cisconx-osMatch7.0\(3\)f

cisconx-osMatch9.2

cisconx-osMatch9.2\(1\)

AND

cisconexus_36180yc-rMatch-

cisconexus_3636c-rMatch-

cisconexus_9504Match-

cisconexus_9508Match-

cisconexus_9516Match-

Node

cisconx-osMatch7.1\(4\)

cisconx-osMatch7.1\(4\)n1\(1\)

cisconx-osMatch7.1\(5\)

cisconx-osMatch7.2

cisconx-osMatch7.3

AND

cisconexus_5548pMatch-

cisconexus_5548upMatch-

cisconexus_5596tMatch-

cisconexus_5596upMatch-

cisconexus_56128pMatch-

cisconexus_5624qMatch-

cisconexus_5648qMatch-

cisconexus_5672upMatch-

cisconexus_5696qMatch-

cisconexus_6001Match-

cisconexus_6004Match-

Node

cisconx-osMatch6.2

cisconx-osMatch7.2

cisconx-osMatch7.3

cisconx-osMatch7.3\(2\)d1\(1\)

cisconx-osMatch8.0

cisconx-osMatch8.1

cisconx-osMatch8.2

cisconx-osMatch8.3

cisconx-osMatch8.3\(2\)s5

AND

cisconexus_7000Match-

cisconexus_7000_10-slotMatch-

cisconexus_7000_18-slotMatch-

cisconexus_7000_4-slotMatch-

cisconexus_7000_9-slotMatch-

cisconexus_7700Match-

cisconexus_7700_10-slotMatch-

cisconexus_7700_18-slotMatch-

cisconexus_7700_2-slotMatch-

cisconexus_7700_6-slotMatch-

CPENameOperatorVersion
cisco:nx-oscisco nx-oseq6.2
cisco:nx-oscisco nx-oseq7.3
cisco:nx-oscisco nx-oseq8.1
cisco:nx-oscisco nx-oseq8.2
cisco:nx-oscisco nx-oseq8.3

CPE	Name	Operator	Version
cisco:nx-os	cisco nx-os	eq	6.2
cisco:nx-os	cisco nx-os	eq	7.3
cisco:nx-os	cisco nx-os	eq	8.1
cisco:nx-os	cisco nx-os	eq	8.2
cisco:nx-os	cisco nx-os	eq	8.3

CNA Affected

[
  {
    "product": "Cisco NX-OS Software",
    "vendor": "Cisco",
    "versions": [
      {
        "lessThan": "8.3(2)",
        "status": "affected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-ntp-dos

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.6 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.7%

JSON

Related for CVE-2019-1967

cvelist1 nessus1 cisco1 nvd1 prion1