Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2019-1740 (GCVE-0-2019-1740)
Vulnerability from cvelistv5 – Published: 2019-03-27 23:25 – Updated: 2024-11-19 19:13
VLAI
EPSS
Title
Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities
Summary
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.
Severity
8.6 (High)
CWE
Assigner
References
2 references
| URL | Tags |
|---|---|
| https://tools.cisco.com/security/center/content/C… | vendor-advisoryx_refsource_CISCO |
| http://www.securityfocus.com/bid/107597 | vdb-entryx_refsource_BID |
Impacted products
1 product
| Vendor | Product | Version | |
|---|---|---|---|
| Cisco | Cisco IOS and Cisco IOS-XE Software |
Affected:
3.16.0S
Affected: 3.16.1S Affected: 3.16.0aS Affected: 3.16.1aS Affected: 3.16.2S Affected: 3.16.2aS Affected: 3.16.0bS Affected: 3.16.0cS Affected: 3.16.3S Affected: 3.16.2bS Affected: 3.16.3aS Affected: 3.16.4S Affected: 3.16.4aS Affected: 3.16.4bS Affected: 3.16.4gS Affected: 3.16.5S Affected: 3.16.4cS Affected: 3.16.4dS Affected: 3.16.4eS Affected: 3.16.5aS Affected: 3.17.0S Affected: 3.17.1S Affected: 3.17.2S Affected: 3.17.1aS Affected: 3.17.3S Affected: 3.17.4S Affected: 3.2.0JA Affected: 16.2.1 Affected: 16.2.2 Affected: 16.3.1 Affected: 16.3.2 Affected: 16.3.3 Affected: 16.3.1a Affected: 16.3.4 Affected: 16.4.1 Affected: 16.4.2 Affected: 16.4.3 Affected: 16.5.1 Affected: 16.5.1a Affected: 16.5.1b Affected: 3.18.0aS Affected: 3.18.0S Affected: 3.18.1S Affected: 3.18.2S Affected: 3.18.3S Affected: 3.18.4S Affected: 3.18.0SP Affected: 3.18.1SP Affected: 3.18.1aSP Affected: 3.18.1gSP Affected: 3.18.1bSP Affected: 3.18.1cSP Affected: 3.18.2SP Affected: 3.18.1hSP Affected: 3.18.2aSP Affected: 3.18.1iSP |
Date Public
2019-03-27 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-04T18:28:41.981Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"tags": [
"vendor-advisory",
"x_refsource_CISCO",
"x_transferred"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"name": "107597",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/107597"
}
],
"title": "CVE Program Container"
},
{
"metrics": [
{
"other": {
"content": {
"id": "CVE-2019-1740",
"options": [
{
"Exploitation": "none"
},
{
"Automatable": "yes"
},
{
"Technical Impact": "partial"
}
],
"role": "CISA Coordinator",
"timestamp": "2024-11-19T17:25:05.430349Z",
"version": "2.0.3"
},
"type": "ssvc"
}
}
],
"providerMetadata": {
"dateUpdated": "2024-11-19T19:13:41.033Z",
"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0",
"shortName": "CISA-ADP"
},
"title": "CISA ADP Vulnrichment"
}
],
"cna": {
"affected": [
{
"product": "Cisco IOS and Cisco IOS-XE Software",
"vendor": "Cisco",
"versions": [
{
"status": "affected",
"version": "3.16.0S"
},
{
"status": "affected",
"version": "3.16.1S"
},
{
"status": "affected",
"version": "3.16.0aS"
},
{
"status": "affected",
"version": "3.16.1aS"
},
{
"status": "affected",
"version": "3.16.2S"
},
{
"status": "affected",
"version": "3.16.2aS"
},
{
"status": "affected",
"version": "3.16.0bS"
},
{
"status": "affected",
"version": "3.16.0cS"
},
{
"status": "affected",
"version": "3.16.3S"
},
{
"status": "affected",
"version": "3.16.2bS"
},
{
"status": "affected",
"version": "3.16.3aS"
},
{
"status": "affected",
"version": "3.16.4S"
},
{
"status": "affected",
"version": "3.16.4aS"
},
{
"status": "affected",
"version": "3.16.4bS"
},
{
"status": "affected",
"version": "3.16.4gS"
},
{
"status": "affected",
"version": "3.16.5S"
},
{
"status": "affected",
"version": "3.16.4cS"
},
{
"status": "affected",
"version": "3.16.4dS"
},
{
"status": "affected",
"version": "3.16.4eS"
},
{
"status": "affected",
"version": "3.16.5aS"
},
{
"status": "affected",
"version": "3.17.0S"
},
{
"status": "affected",
"version": "3.17.1S"
},
{
"status": "affected",
"version": "3.17.2S"
},
{
"status": "affected",
"version": "3.17.1aS"
},
{
"status": "affected",
"version": "3.17.3S"
},
{
"status": "affected",
"version": "3.17.4S"
},
{
"status": "affected",
"version": "3.2.0JA"
},
{
"status": "affected",
"version": "16.2.1"
},
{
"status": "affected",
"version": "16.2.2"
},
{
"status": "affected",
"version": "16.3.1"
},
{
"status": "affected",
"version": "16.3.2"
},
{
"status": "affected",
"version": "16.3.3"
},
{
"status": "affected",
"version": "16.3.1a"
},
{
"status": "affected",
"version": "16.3.4"
},
{
"status": "affected",
"version": "16.4.1"
},
{
"status": "affected",
"version": "16.4.2"
},
{
"status": "affected",
"version": "16.4.3"
},
{
"status": "affected",
"version": "16.5.1"
},
{
"status": "affected",
"version": "16.5.1a"
},
{
"status": "affected",
"version": "16.5.1b"
},
{
"status": "affected",
"version": "3.18.0aS"
},
{
"status": "affected",
"version": "3.18.0S"
},
{
"status": "affected",
"version": "3.18.1S"
},
{
"status": "affected",
"version": "3.18.2S"
},
{
"status": "affected",
"version": "3.18.3S"
},
{
"status": "affected",
"version": "3.18.4S"
},
{
"status": "affected",
"version": "3.18.0SP"
},
{
"status": "affected",
"version": "3.18.1SP"
},
{
"status": "affected",
"version": "3.18.1aSP"
},
{
"status": "affected",
"version": "3.18.1gSP"
},
{
"status": "affected",
"version": "3.18.1bSP"
},
{
"status": "affected",
"version": "3.18.1cSP"
},
{
"status": "affected",
"version": "3.18.2SP"
},
{
"status": "affected",
"version": "3.18.1hSP"
},
{
"status": "affected",
"version": "3.18.2aSP"
},
{
"status": "affected",
"version": "3.18.1iSP"
}
]
}
],
"datePublic": "2019-03-27T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition."
}
],
"exploits": [
{
"lang": "en",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
}
],
"metrics": [
{
"cvssV3_0": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
}
}
],
"problemTypes": [
{
"descriptions": [
{
"cweId": "CWE-20",
"description": "CWE-20",
"lang": "en",
"type": "CWE"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-03-28T12:06:05.000Z",
"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"shortName": "cisco"
},
"references": [
{
"name": "20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"tags": [
"vendor-advisory",
"x_refsource_CISCO"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"name": "107597",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/107597"
}
],
"source": {
"advisory": "cisco-sa-20190327-nbar",
"defect": [
[
"CSCvb51688",
"CSCvc94856",
"CSCvc99155",
"CSCvf01501"
]
],
"discovery": "INTERNAL"
},
"title": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"DATE_PUBLIC": "2019-03-27T16:00:00-0700",
"ID": "CVE-2019-1740",
"STATE": "PUBLIC",
"TITLE": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cisco IOS and Cisco IOS-XE Software",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "3.16.0S"
},
{
"version_affected": "=",
"version_value": "3.16.1S"
},
{
"version_affected": "=",
"version_value": "3.16.0aS"
},
{
"version_affected": "=",
"version_value": "3.16.1aS"
},
{
"version_affected": "=",
"version_value": "3.16.2S"
},
{
"version_affected": "=",
"version_value": "3.16.2aS"
},
{
"version_affected": "=",
"version_value": "3.16.0bS"
},
{
"version_affected": "=",
"version_value": "3.16.0cS"
},
{
"version_affected": "=",
"version_value": "3.16.3S"
},
{
"version_affected": "=",
"version_value": "3.16.2bS"
},
{
"version_affected": "=",
"version_value": "3.16.3aS"
},
{
"version_affected": "=",
"version_value": "3.16.4S"
},
{
"version_affected": "=",
"version_value": "3.16.4aS"
},
{
"version_affected": "=",
"version_value": "3.16.4bS"
},
{
"version_affected": "=",
"version_value": "3.16.4gS"
},
{
"version_affected": "=",
"version_value": "3.16.5S"
},
{
"version_affected": "=",
"version_value": "3.16.4cS"
},
{
"version_affected": "=",
"version_value": "3.16.4dS"
},
{
"version_affected": "=",
"version_value": "3.16.4eS"
},
{
"version_affected": "=",
"version_value": "3.16.5aS"
},
{
"version_affected": "=",
"version_value": "3.17.0S"
},
{
"version_affected": "=",
"version_value": "3.17.1S"
},
{
"version_affected": "=",
"version_value": "3.17.2S"
},
{
"version_affected": "=",
"version_value": "3.17.1aS"
},
{
"version_affected": "=",
"version_value": "3.17.3S"
},
{
"version_affected": "=",
"version_value": "3.17.4S"
},
{
"version_affected": "=",
"version_value": "3.2.0JA"
},
{
"version_affected": "=",
"version_value": "16.2.1"
},
{
"version_affected": "=",
"version_value": "16.2.2"
},
{
"version_affected": "=",
"version_value": "16.3.1"
},
{
"version_affected": "=",
"version_value": "16.3.2"
},
{
"version_affected": "=",
"version_value": "16.3.3"
},
{
"version_affected": "=",
"version_value": "16.3.1a"
},
{
"version_affected": "=",
"version_value": "16.3.4"
},
{
"version_affected": "=",
"version_value": "16.4.1"
},
{
"version_affected": "=",
"version_value": "16.4.2"
},
{
"version_affected": "=",
"version_value": "16.4.3"
},
{
"version_affected": "=",
"version_value": "16.5.1"
},
{
"version_affected": "=",
"version_value": "16.5.1a"
},
{
"version_affected": "=",
"version_value": "16.5.1b"
},
{
"version_affected": "=",
"version_value": "3.18.0aS"
},
{
"version_affected": "=",
"version_value": "3.18.0S"
},
{
"version_affected": "=",
"version_value": "3.18.1S"
},
{
"version_affected": "=",
"version_value": "3.18.2S"
},
{
"version_affected": "=",
"version_value": "3.18.3S"
},
{
"version_affected": "=",
"version_value": "3.18.4S"
},
{
"version_affected": "=",
"version_value": "3.18.0SP"
},
{
"version_affected": "=",
"version_value": "3.18.1SP"
},
{
"version_affected": "=",
"version_value": "3.18.1aSP"
},
{
"version_affected": "=",
"version_value": "3.18.1gSP"
},
{
"version_affected": "=",
"version_value": "3.18.1bSP"
},
{
"version_affected": "=",
"version_value": "3.18.1cSP"
},
{
"version_affected": "=",
"version_value": "3.18.2SP"
},
{
"version_affected": "=",
"version_value": "3.18.1hSP"
},
{
"version_affected": "=",
"version_value": "3.18.2aSP"
},
{
"version_affected": "=",
"version_value": "3.18.1iSP"
}
]
}
}
]
},
"vendor_name": "Cisco"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition."
}
]
},
"exploit": [
{
"lang": "en",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory."
}
],
"impact": {
"cvss": {
"baseScore": "8.6",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"name": "107597",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/107597"
}
]
},
"source": {
"advisory": "cisco-sa-20190327-nbar",
"defect": [
[
"CSCvb51688",
"CSCvc94856",
"CSCvc99155",
"CSCvf01501"
]
],
"discovery": "INTERNAL"
}
}
}
},
"cveMetadata": {
"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
"assignerShortName": "cisco",
"cveId": "CVE-2019-1740",
"datePublished": "2019-03-27T23:25:18.976Z",
"dateReserved": "2018-12-06T00:00:00.000Z",
"dateUpdated": "2024-11-19T19:13:41.033Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2019-1740",
"date": "2026-05-26",
"epss": "0.00889",
"percentile": "0.75744"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2019-1740\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2019-03-28T00:29:00.373\",\"lastModified\":\"2024-11-21T04:37:15.070\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en la funcionalidad NBAR (Network-Based Application Recognition) de los softwares Cisco IOS y Cisco IOS XE podr\u00eda permitir que un atacante remoto no autenticado provoque que el dispositivo afectado se recargue. Esta vulnerabilidad se debe a un problema de an\u00e1lisis en los paquetes DNS. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de paquetes DNS manipulados a trav\u00e9s de routers que ejecutan una versi\u00f3n afectada y tienen NBAR habilitado. Si se explota con \u00e9xito, podr\u00eda permitir que el atacante consiga que el dispositivo afectado se reinicie, provocando una denegaci\u00f3n de servicio (DoS).\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":4.0}],\"cvssMetricV30\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\",\"baseScore\":8.6,\"baseSeverity\":\"HIGH\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"CHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":4.0}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":7.8,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-20\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.2.0ja:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52BC2A87-31EC-4E15-86E3-ECBEFA9E479A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.0as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97410577-A005-49B6-981C-535B3484E72F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.0bs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3420FB4D-8A6A-4B37-A4AE-7B35BEEEAF71\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.0cs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5568EABF-8F43-4A87-8DE4-A03E9065BE53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.0s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A0E5BB91-B5E7-4961-87DC-26596E5EDED7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.1as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AC72AA6D-9E18-49F7-95CA-A4A5D7A60E4E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D3822447-EB80-4DF2-B7F2-471F55BA99C0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.2as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA0B441A-3A09-4A58-8A40-D463003A50BC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.2bs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51E1A64A-204D-4567-A2DC-EFEB2AE62B54\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.2s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"970FD986-6D0E-441C-9BF3-C66A25763A7A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.3as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7EEFD3AD-EFA2-4808-801E-B98E4C63AA76\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.3s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1826C997-6D5D-480E-A12E-3048B6C61216\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5D136C95-F837-49AD-82B3-81C25F68D0EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4bs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C35B3F96-B342-4AFC-A511-7A735B961ECD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4cs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9E203E52-0A3A-4910-863D-05FEF537C9B8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4ds:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DED2D791-4142-4B9E-8401-6B63357536B0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4es:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4B6442B5-A87E-493B-98D5-F954B5A001BA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4gs:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8794DA1D-9EE8-4139-B8E9-061A73CFD5F5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.4s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9FBEF4B2-EA12-445A-823E-E0E5343A405E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.5as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EAC484-1C4F-4CA8-B8E1-6EE0E9497A4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.16.5s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"844E7CEC-5CB6-47AE-95F7-75693347C08E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.17.0s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12793F39-13C4-4DBC-9B78-FE361BDDF89D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.17.1as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1AEF94C7-CEE6-4696-9F1D-549639A831C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.17.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"876767C7-0196-4226-92B1-DDE851B53655\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.17.2s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0141D67B-632F-48ED-8837-4CC799616C57\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.17.3s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"141FFB5E-EA72-4FC1-B87A-B5E2D5FCFE2A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.17.4s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE444B39-D025-471B-835E-88671212ACAA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.0as:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE390091-D382-4436-BBB4-D4C33E4F6714\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.0s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE81AA43-88D4-4EFC-B8F6-A41EFF437819\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.0sp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C18E6308-7A34-43E3-9AD8-5FB52B31ACB6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1asp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A667AEC6-57E3-4D67-A02E-F0BAEBCE16DD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1bsp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"80EE163D-D9EC-46A1-826A-54F8F3A3FFBE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1csp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CE4CFE4-C00F-4FAE-8FDF-F6C92E92838D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1gsp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CE3170E3-0BCC-4C5F-8E6C-5E91E8C4E7A8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1hsp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3CCDB353-DD15-4C91-AD2A-73649C012E08\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1isp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D7DAAE1-BB3F-4FBA-A6ED-3BABC9196C1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BEBCBF7-D1CF-488F-BB3E-F864F901A96A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.1sp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06BBE88E-FEFB-4B90-91D1-4F053FA0EA47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.2asp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0D43FA49-1F9D-4FD0-AF18-6E9AB6DF702F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.2s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BD8CCA19-1D1C-45C0-A1A0-CED5885AD580\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.2sp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"014224BF-926E-470C-A133-84036D8AD533\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.3s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4063CCF8-19BE-4411-B71B-147BB146700B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:3.18.4s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"186ADB50-A4D4-4B32-884D-3195E7770346\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.2.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"89526731-B712-43D3-B451-D7FC503D2D65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.2.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"302933FE-4B6A-48A3-97F0-4B943251B717\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.3.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"296636F1-9242-429B-8472-90352C056106\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.3.1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77993343-0394-413F-ABF9-C1215E9AD800\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.3.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"283971DD-DD58-4A76-AC2A-F316534ED416\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.3.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A8F324A5-4830-482E-A684-AB3B6594CEAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.3.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E8120196-8648-49D0-8262-CD4C9C90C37A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"77E8AF15-AB46-4EAB-8872-8C55E8601599\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.4.2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"957318BE-55D4-4585-AA52-C813301D01C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.4.3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8F11B703-8A0F-47ED-AA70-951FF78B94A4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.5.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FE7B2557-821D-4E05-B5C3-67192573D97D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.5.1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5EE6EC32-51E4-43A3-BFB9-A0D842D08E87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.5.1b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"187F699A-AF2F-42B0-B855-27413140C384\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.9.3s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41D55481-C80E-4400-9C3D-9F6B1F7F13CE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios_xe:16.9.4c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D07F9539-CFBE-46F7-9F5E-93A68169797D\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"34D7D48C-9FA1-45DB-B206-437E8ECBF53D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3626B216-43E8-4E60-96E5-7CAA0CB67F65\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D9B59D8B-E71A-4671-BA0B-00E56498E280\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"956C0089-E5AE-4289-B6D7-A8AB3C39AAA8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"333468BC-41F0-46ED-9561-D7D2CE6AC267\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09DBAA17-61D7-4EE4-A70D-A7200DF36C58\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DF17EADC-5812-47FD-A243-287837CEC1E6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5733BCBA-B3CE-4B18-9F7B-51CE17AAEF89\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd9:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BE8CF99C-B097-4964-B07C-FBB28EB37681\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"79DC64FF-E6F4-4FEE-87A2-14DF0DA55B23\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd12:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBA4B81F-7FCA-4666-8602-F6C77A4673E8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd13:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2403659-B7AD-40CE-AF88-FE2BEF0929E4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jd14:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7D1F53B1-E9FA-4480-8314-C531073B25CF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)je:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2955A319-04AC-4D0C-80B7-0C90503908C3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0EF13B6-A743-41D1-BB31-F17C3586C8AF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B4F7A75-1D0B-4F55-868C-99DBB67AE1AB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"37875B18-434B-4218-BAAF-2B593E188180\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"26BAC234-D00C-4407-A1FE-E45A14D1BDAB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jf5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C42E2869-F179-49B7-A4E8-0F4E8EA953CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jg:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"746D8C22-4A3E-4EDB-96A1-923EFF2FD5C2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jg1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8BB02DEB-81D4-4A05-BDD5-3B8BC7184159\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jh:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B18C3383-28B0-435E-AF08-9739DADAE4E2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jk6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4E18F8C6-E592-4507-8B93-E9AEA5C12CC1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnp:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F45D0EFD-784A-4CDB-8FDB-41F6869B4735\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnp1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"942CC01D-ED6E-4731-A61B-75CDF219F760\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jnp3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"59CA018E-5160-40AE-953D-9559F23D2EAF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpb:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BBA595EF-8718-4477-8EEC-EA948C14F091\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpb1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CDCADB1-EA01-41AF-9D96-A6EDE42D7A9C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13763901-2D7B-485D-A957-E30587BCEB88\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8B213166-77E2-4E13-8769-FA8AF6EEC33A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A3C0371-223A-433C-B8A3-C24A499EB82F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A066A001-830B-4407-A5CD-AB99059C190E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpc5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"83B45095-526D-4BC5-A16B-6B5741F07FD8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.3\\\\(3\\\\)jpd:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C4A9F7DF-BB18-46FC-B471-3FC41F4CCD01\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"716EC9AA-0569-4FA7-A244-1A14FA15C5AD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39166A66-859D-43A7-9947-3F3C32FBFAAE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"097D1950-6159-45A2-8653-D3F90044D0C8\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F421AC3C-B0BC-4177-ACDB-87792C1636EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m2a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EA965B88-3464-4320-B9C4-594C49C9C0F6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09CD336D-1110-4B0C-B8D4-7C96293CBADE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"47C580D9-A2EC-4CBB-87F5-1F5CBA23F73F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m4a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3C427BA8-3A8C-4934-997B-6DDF9CEB96AE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m4b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"90950C85-D631-4F60-AB3E-3ED1D74D56B9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m4c:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CD79CA0D-7D90-4955-969A-C25873B0B9D3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)m5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7809674-4738-463E-B522-FC6C419E2A09\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1194A7BD-CB51-42CD-96E6-9ACF126DD8CA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CB52603C-CED4-4330-BB53-DDDFEA83882A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F40A87C1-5EDB-4B50-84CF-729F5037E870\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E3BFDBE4-7AD9-418F-8DA5-F97BB37E46BD\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"42C9B84C-F9DC-4F9E-82F2-04004D539C36\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E246B9E-F93F-4BB2-9BA4-438FCC4A711B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE884ADE-FD51-4F10-89A8-D871E7407C83\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)s5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B00BF54E-CBFB-4ECD-9EDF-0A8331AF2BE6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C84498B4-7002-44D1-B2B7-B43F3081D258\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.5\\\\(3\\\\)sn0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E10003D7-8501-4A8C-AED1-A9F9B79D0666\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0F61B07A-7933-476F-951A-AD0019D2443D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)s1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"41939712-5075-4924-ABF2-467430B37197\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)s2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E7CBC8C7-E3B2-4659-9B47-C0F16817F46A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)s3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3DC59C3E-A2A4-4A1A-B561-E411D7DE85E7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)s4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"945363EE-FE7A-44ED-A4A0-942A1F9B2702\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F1CEA598-B4E5-44E6-AA1A-79DC4FE3B62E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)sn1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2481A9F2-2C99-4A78-B8B4-0D073A6CFED5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)sn2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"667CB7FD-280B-42D6-9E45-EA04A1DC7701\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)sn3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"65DD79B6-A44A-447F-A69D-C7C4193F5C1C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5E25B3DC-B9A7-4DFC-8566-3F790F460DDC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)t0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"679DCA8C-F64B-4716-BCC9-9C461A89CB29\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)t1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EF662E36-0831-4892-850F-844B0E0B54DA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(1\\\\)t2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1E71F49D-E405-4AB4-9188-DA7B338DFD7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)s:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"700D0D31-138B-4F9A-8C76-3AF8B9D2C59C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)s1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B843CEE5-4D53-414D-95C7-4BA515818E87\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)s2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1BB5DABC-4DAF-4696-A8AE-D4B6B188B9EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)s3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"72480900-6E08-425F-965D-143B348E374A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)s4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1EBA0926-E790-4B1C-A549-5B7D2F040E5A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12D439A6-E8A8-4389-A7C8-2F4BCB7C3854\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)t:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"09578DDF-5D13-47C1-9BD1-A1A8B9B0C87D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)t0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6DDCF08B-3A61-4B3D-BF35-ABB5F11EA7E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)t1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5BBF8B70-DFBE-4F6E-83F0-171F03E97606\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(2\\\\)t2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CA55D660-66C6-4278-8C27-25DB2712CC1A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(3\\\\)m:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8320F23D-F6BE-405B-B645-1CEB984E8267\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(3\\\\)m0a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4CE2670E-8C17-448D-A5BD-5A4FBCAEC35A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(3\\\\)m1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C7C5C705-6A8C-4834-9D24-CFE26A232C15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(3\\\\)m1a:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"691BA27E-77AB-4A30-916D-3BB916B05298\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(3\\\\)m1b:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CC270E40-CABA-44B4-B4DD-E9C47A97770B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(3\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"466F2336-03D9-4842-BC3D-861749756B9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(4\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"494F7651-927A-418D-B01A-1C30BFE28560\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(5\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E9ACFB65-C99B-4402-A8E5-914533FF3F2F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(6\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"06A1672C-9156-48BB-A535-26E6854E70D2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(7\\\\)sn:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F805324A-1593-4B48-B597-CF870D35944B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(7\\\\)sn1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C78D1111-D91D-4E43-BC47-86EB37AACF75\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(7\\\\)sn2:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B949D73E-0ED4-40CA-801E-F0BEE22157B6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:ios:15.6\\\\(7\\\\)sn3:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B39EE211-3A5C-4359-BD61-CF26ED3FC15F\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/107597\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Patch\",\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/107597\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Vendor Advisory\"]}]}}",
"vulnrichment": {
"containers": "{\"adp\": [{\"title\": \"CVE Program Container\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar\", \"name\": \"20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities\", \"tags\": [\"vendor-advisory\", \"x_refsource_CISCO\", \"x_transferred\"]}, {\"url\": \"http://www.securityfocus.com/bid/107597\", \"name\": \"107597\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\", \"x_transferred\"]}], \"providerMetadata\": {\"orgId\": \"af854a3a-2127-422b-91ae-364da2661108\", \"shortName\": \"CVE\", \"dateUpdated\": \"2024-08-04T18:28:41.981Z\"}}, {\"title\": \"CISA ADP Vulnrichment\", \"metrics\": [{\"other\": {\"type\": \"ssvc\", \"content\": {\"id\": \"CVE-2019-1740\", \"role\": \"CISA Coordinator\", \"options\": [{\"Exploitation\": \"none\"}, {\"Automatable\": \"yes\"}, {\"Technical Impact\": \"partial\"}], \"version\": \"2.0.3\", \"timestamp\": \"2024-11-19T17:25:05.430349Z\"}}}], \"providerMetadata\": {\"orgId\": \"134c704f-9b21-4f2e-91b3-4a467353bcc0\", \"shortName\": \"CISA-ADP\", \"dateUpdated\": \"2024-11-19T17:25:32.844Z\"}}], \"cna\": {\"title\": \"Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities\", \"source\": {\"defect\": [[\"CSCvb51688\", \"CSCvc94856\", \"CSCvc99155\", \"CSCvf01501\"]], \"advisory\": \"cisco-sa-20190327-nbar\", \"discovery\": \"INTERNAL\"}, \"metrics\": [{\"cvssV3_0\": {\"scope\": \"CHANGED\", \"version\": \"3.0\", \"baseScore\": 8.6, \"attackVector\": \"NETWORK\", \"baseSeverity\": \"HIGH\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\", \"integrityImpact\": \"NONE\", \"userInteraction\": \"NONE\", \"attackComplexity\": \"LOW\", \"availabilityImpact\": \"HIGH\", \"privilegesRequired\": \"NONE\", \"confidentialityImpact\": \"NONE\"}}], \"affected\": [{\"vendor\": \"Cisco\", \"product\": \"Cisco IOS and Cisco IOS-XE Software\", \"versions\": [{\"status\": \"affected\", \"version\": \"3.16.0S\"}, {\"status\": \"affected\", \"version\": \"3.16.1S\"}, {\"status\": \"affected\", \"version\": \"3.16.0aS\"}, {\"status\": \"affected\", \"version\": \"3.16.1aS\"}, {\"status\": \"affected\", \"version\": \"3.16.2S\"}, {\"status\": \"affected\", \"version\": \"3.16.2aS\"}, {\"status\": \"affected\", \"version\": \"3.16.0bS\"}, {\"status\": \"affected\", \"version\": \"3.16.0cS\"}, {\"status\": \"affected\", \"version\": \"3.16.3S\"}, {\"status\": \"affected\", \"version\": \"3.16.2bS\"}, {\"status\": \"affected\", \"version\": \"3.16.3aS\"}, {\"status\": \"affected\", \"version\": \"3.16.4S\"}, {\"status\": \"affected\", \"version\": \"3.16.4aS\"}, {\"status\": \"affected\", \"version\": \"3.16.4bS\"}, {\"status\": \"affected\", \"version\": \"3.16.4gS\"}, {\"status\": \"affected\", \"version\": \"3.16.5S\"}, {\"status\": \"affected\", \"version\": \"3.16.4cS\"}, {\"status\": \"affected\", \"version\": \"3.16.4dS\"}, {\"status\": \"affected\", \"version\": \"3.16.4eS\"}, {\"status\": \"affected\", \"version\": \"3.16.5aS\"}, {\"status\": \"affected\", \"version\": \"3.17.0S\"}, {\"status\": \"affected\", \"version\": \"3.17.1S\"}, {\"status\": \"affected\", \"version\": \"3.17.2S\"}, {\"status\": \"affected\", \"version\": \"3.17.1aS\"}, {\"status\": \"affected\", \"version\": \"3.17.3S\"}, {\"status\": \"affected\", \"version\": \"3.17.4S\"}, {\"status\": \"affected\", \"version\": \"3.2.0JA\"}, {\"status\": \"affected\", \"version\": \"16.2.1\"}, {\"status\": \"affected\", \"version\": \"16.2.2\"}, {\"status\": \"affected\", \"version\": \"16.3.1\"}, {\"status\": \"affected\", \"version\": \"16.3.2\"}, {\"status\": \"affected\", \"version\": \"16.3.3\"}, {\"status\": \"affected\", \"version\": \"16.3.1a\"}, {\"status\": \"affected\", \"version\": \"16.3.4\"}, {\"status\": \"affected\", \"version\": \"16.4.1\"}, {\"status\": \"affected\", \"version\": \"16.4.2\"}, {\"status\": \"affected\", \"version\": \"16.4.3\"}, {\"status\": \"affected\", \"version\": \"16.5.1\"}, {\"status\": \"affected\", \"version\": \"16.5.1a\"}, {\"status\": \"affected\", \"version\": \"16.5.1b\"}, {\"status\": \"affected\", \"version\": \"3.18.0aS\"}, {\"status\": \"affected\", \"version\": \"3.18.0S\"}, {\"status\": \"affected\", \"version\": \"3.18.1S\"}, {\"status\": \"affected\", \"version\": \"3.18.2S\"}, {\"status\": \"affected\", \"version\": \"3.18.3S\"}, {\"status\": \"affected\", \"version\": \"3.18.4S\"}, {\"status\": \"affected\", \"version\": \"3.18.0SP\"}, {\"status\": \"affected\", \"version\": \"3.18.1SP\"}, {\"status\": \"affected\", \"version\": \"3.18.1aSP\"}, {\"status\": \"affected\", \"version\": \"3.18.1gSP\"}, {\"status\": \"affected\", \"version\": \"3.18.1bSP\"}, {\"status\": \"affected\", \"version\": \"3.18.1cSP\"}, {\"status\": \"affected\", \"version\": \"3.18.2SP\"}, {\"status\": \"affected\", \"version\": \"3.18.1hSP\"}, {\"status\": \"affected\", \"version\": \"3.18.2aSP\"}, {\"status\": \"affected\", \"version\": \"3.18.1iSP\"}]}], \"exploits\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.\"}], \"datePublic\": \"2019-03-27T00:00:00.000Z\", \"references\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar\", \"name\": \"20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities\", \"tags\": [\"vendor-advisory\", \"x_refsource_CISCO\"]}, {\"url\": \"http://www.securityfocus.com/bid/107597\", \"name\": \"107597\", \"tags\": [\"vdb-entry\", \"x_refsource_BID\"]}], \"descriptions\": [{\"lang\": \"en\", \"value\": \"A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.\"}], \"problemTypes\": [{\"descriptions\": [{\"lang\": \"en\", \"type\": \"CWE\", \"cweId\": \"CWE-20\", \"description\": \"CWE-20\"}]}], \"providerMetadata\": {\"orgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"shortName\": \"cisco\", \"dateUpdated\": \"2019-03-28T12:06:05.000Z\"}, \"x_legacyV4Record\": {\"impact\": {\"cvss\": {\"version\": \"3.0\", \"baseScore\": \"8.6\", \"vectorString\": \"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H\"}}, \"source\": {\"defect\": [[\"CSCvb51688\", \"CSCvc94856\", \"CSCvc99155\", \"CSCvf01501\"]], \"advisory\": \"cisco-sa-20190327-nbar\", \"discovery\": \"INTERNAL\"}, \"affects\": {\"vendor\": {\"vendor_data\": [{\"product\": {\"product_data\": [{\"version\": {\"version_data\": [{\"version_value\": \"3.16.0S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.1S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.0aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.1aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.2S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.2aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.0bS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.0cS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.3S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.2bS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.3aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4bS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4gS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.5S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4cS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4dS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.4eS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.16.5aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.17.0S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.17.1S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.17.2S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.17.1aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.17.3S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.17.4S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.2.0JA\", \"version_affected\": \"=\"}, {\"version_value\": \"16.2.1\", \"version_affected\": \"=\"}, {\"version_value\": \"16.2.2\", \"version_affected\": \"=\"}, {\"version_value\": \"16.3.1\", \"version_affected\": \"=\"}, {\"version_value\": \"16.3.2\", \"version_affected\": \"=\"}, {\"version_value\": \"16.3.3\", \"version_affected\": \"=\"}, {\"version_value\": \"16.3.1a\", \"version_affected\": \"=\"}, {\"version_value\": \"16.3.4\", \"version_affected\": \"=\"}, {\"version_value\": \"16.4.1\", \"version_affected\": \"=\"}, {\"version_value\": \"16.4.2\", \"version_affected\": \"=\"}, {\"version_value\": \"16.4.3\", \"version_affected\": \"=\"}, {\"version_value\": \"16.5.1\", \"version_affected\": \"=\"}, {\"version_value\": \"16.5.1a\", \"version_affected\": \"=\"}, {\"version_value\": \"16.5.1b\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.0aS\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.0S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.2S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.3S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.4S\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.0SP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1SP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1aSP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1gSP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1bSP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1cSP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.2SP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1hSP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.2aSP\", \"version_affected\": \"=\"}, {\"version_value\": \"3.18.1iSP\", \"version_affected\": \"=\"}]}, \"product_name\": \"Cisco IOS and Cisco IOS-XE Software\"}]}, \"vendor_name\": \"Cisco\"}]}}, \"exploit\": [{\"lang\": \"en\", \"value\": \"The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.\"}], \"data_type\": \"CVE\", \"references\": {\"reference_data\": [{\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar\", \"name\": \"20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities\", \"refsource\": \"CISCO\"}, {\"url\": \"http://www.securityfocus.com/bid/107597\", \"name\": \"107597\", \"refsource\": \"BID\"}]}, \"data_format\": \"MITRE\", \"description\": {\"description_data\": [{\"lang\": \"eng\", \"value\": \"A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.\"}]}, \"problemtype\": {\"problemtype_data\": [{\"description\": [{\"lang\": \"eng\", \"value\": \"CWE-20\"}]}]}, \"data_version\": \"4.0\", \"CVE_data_meta\": {\"ID\": \"CVE-2019-1740\", \"STATE\": \"PUBLIC\", \"TITLE\": \"Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities\", \"ASSIGNER\": \"psirt@cisco.com\", \"DATE_PUBLIC\": \"2019-03-27T16:00:00-0700\"}}}}",
"cveMetadata": "{\"cveId\": \"CVE-2019-1740\", \"state\": \"PUBLISHED\", \"dateUpdated\": \"2024-11-19T19:13:41.033Z\", \"dateReserved\": \"2018-12-06T00:00:00.000Z\", \"assignerOrgId\": \"d1c1063e-7a18-46af-9102-31f8928bc633\", \"datePublished\": \"2019-03-27T23:25:18.976Z\", \"assignerShortName\": \"cisco\"}",
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
}
}
BDU:2019-01334
Vulnerability from fstec - Published: 27.03.2019
VLAI
Title
Уязвимость реализации технологии Network-Based Application Recognition операционных систем Cisco IOS и Cisco IOS XE, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость реализации технологии Network-Based Application Recognition в операционных системах Cisco IOS и Cisco IOS XE существует из-за ошибок синтаксического анализа DNS-пакетов. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, не прошедшему проверку подлинности, вызвать перезагрузку уязвимого устройства, приводящую к отказу в обслуживании путем отправки специально сформированных DNS-пакетов
Severity
Vendor
Cisco Systems Inc.
Software Name
Cisco IOS
Software Version
15.6(1)T0a (Cisco IOS), 15.5(3)M (Cisco IOS), 15.5(3)S (Cisco IOS), 15.5(3)S1 (Cisco IOS), 15.5(3)S1a (Cisco IOS), 15.5(3)S2 (Cisco IOS), 15.5(3)S0a (Cisco IOS), 15.5(3)S3 (Cisco IOS), 15.5(3)S4 (Cisco IOS), 15.5(3)S5 (Cisco IOS), 15.5(3)M1 (Cisco IOS), 15.5(3)M0a (Cisco IOS), 15.5(3)M2 (Cisco IOS), 15.5(3)M3 (Cisco IOS), 15.5(3)M4 (Cisco IOS), 15.5(3)M4a (Cisco IOS), 15.5(3)M5 (Cisco IOS), 15.5(3)SN (Cisco IOS), 15.6(1)S (Cisco IOS), 15.6(2)S (Cisco IOS), 15.6(2)S1 (Cisco IOS), 15.6(1)S1 (Cisco IOS), 15.6(1)S2 (Cisco IOS), 15.6(2)S2 (Cisco IOS), 15.6(1)S3 (Cisco IOS), 15.6(2)S3 (Cisco IOS), 15.6(1)S4 (Cisco IOS), 15.6(2)S4 (Cisco IOS), 15.6(1)T (Cisco IOS), 15.6(2)T (Cisco IOS), 15.6(1)T1 (Cisco IOS), 15.6(2)T1 (Cisco IOS), 15.6(1)T2 (Cisco IOS), 15.6(2)T2 (Cisco IOS), 15.3(3)JD8 (Cisco IOS), 15.6(3)M (Cisco IOS), 15.6(3)M1 (Cisco IOS), 15.6(3)M0a (Cisco IOS), 15.6(3)M1b (Cisco IOS), 15.3(3)JF2 (Cisco IOS), 15.1(4)M12c (Cisco IOS), 15.1(2)SG8a (Cisco IOS), 15.6(2)SP3b (Cisco IOS), 15.1(3)SVG3d (Cisco IOS), 15.2(3)EA1 (Cisco IOS), 15.2(4a)EA5 (Cisco IOS), 15.1(3)SVI1b (Cisco IOS), 15.3(3)JF35 (Cisco IOS), 15.1(3)SVM3 (Cisco IOS), 15.1(3)SVN2 (Cisco IOS), 15.1(3)SVO1 (Cisco IOS), 15.1(3)SVO2 (Cisco IOS), 15.3(3)JI2 (Cisco IOS), 15.1(3)SVP1 (Cisco IOS), 15.5(3)M4b (Cisco IOS), 15.5(3)M4c (Cisco IOS), 15.5(3)M5a (Cisco IOS), 15.3(3)JA1n (Cisco IOS), 15.5(3)SN0a (Cisco IOS), 15.3(3)JNP (Cisco IOS), 15.3(3)JNP1 (Cisco IOS), 15.3(3)JNP3 (Cisco IOS), 15.6(1)SN (Cisco IOS), 15.6(1)SN1 (Cisco IOS), 15.6(1)SN2 (Cisco IOS), 15.6(1)SN3 (Cisco IOS), 15.6(3)SN (Cisco IOS), 15.6(4)SN (Cisco IOS), 15.6(5)SN (Cisco IOS), 15.6(6)SN (Cisco IOS), 15.6(7)SN (Cisco IOS), 15.3(3)JPB (Cisco IOS), 15.3(3)JPB1 (Cisco IOS), 15.3(3)JD (Cisco IOS), 15.3(3)JD2 (Cisco IOS), 15.3(3)JD3 (Cisco IOS), 15.3(3)JD4 (Cisco IOS), 15.3(3)JD5 (Cisco IOS), 15.3(3)JD6 (Cisco IOS), 15.3(3)JD7 (Cisco IOS), 15.3(3)JD9 (Cisco IOS), 15.3(3)JD11 (Cisco IOS), 15.3(3)JD12 (Cisco IOS), 15.3(3)JD13 (Cisco IOS), 15.3(3)JD14 (Cisco IOS), 15.6(3)M1a (Cisco IOS), 15.3(3)JPC (Cisco IOS), 15.3(3)JPC1 (Cisco IOS), 15.3(3)JPC2 (Cisco IOS), 15.3(3)JPC3 (Cisco IOS), 15.3(3)JPC5 (Cisco IOS), 15.3(3)JE (Cisco IOS), 15.3(3)JPD (Cisco IOS), 15.3(3)JF (Cisco IOS), 15.3(3)JF1 (Cisco IOS), 15.3(3)JF4 (Cisco IOS), 15.3(3)JF5 (Cisco IOS), 15.3(3)JG (Cisco IOS), 15.3(3)JG1 (Cisco IOS), 15.3(3)JH (Cisco IOS), 15.1(3)SVO3 (Cisco IOS), 15.1(3)SVO4 (Cisco IOS), 15.1(3)SVK4b (Cisco IOS), 15.1(3)SVK4c (Cisco IOS), 15.3(3)JI (Cisco IOS), 15.5(3)M2a (Cisco IOS), 15.6(2)T0a (Cisco IOS)
Possible Mitigations
Иcпользование рекомендаций:
https://tools.cisco.com/security/center/viewErp.x?alertId=ERP-71141
Reference
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Cisco Systems Inc.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "15.6(1)T0a (Cisco IOS), 15.5(3)M (Cisco IOS), 15.5(3)S (Cisco IOS), 15.5(3)S1 (Cisco IOS), 15.5(3)S1a (Cisco IOS), 15.5(3)S2 (Cisco IOS), 15.5(3)S0a (Cisco IOS), 15.5(3)S3 (Cisco IOS), 15.5(3)S4 (Cisco IOS), 15.5(3)S5 (Cisco IOS), 15.5(3)M1 (Cisco IOS), 15.5(3)M0a (Cisco IOS), 15.5(3)M2 (Cisco IOS), 15.5(3)M3 (Cisco IOS), 15.5(3)M4 (Cisco IOS), 15.5(3)M4a (Cisco IOS), 15.5(3)M5 (Cisco IOS), 15.5(3)SN (Cisco IOS), 15.6(1)S (Cisco IOS), 15.6(2)S (Cisco IOS), 15.6(2)S1 (Cisco IOS), 15.6(1)S1 (Cisco IOS), 15.6(1)S2 (Cisco IOS), 15.6(2)S2 (Cisco IOS), 15.6(1)S3 (Cisco IOS), 15.6(2)S3 (Cisco IOS), 15.6(1)S4 (Cisco IOS), 15.6(2)S4 (Cisco IOS), 15.6(1)T (Cisco IOS), 15.6(2)T (Cisco IOS), 15.6(1)T1 (Cisco IOS), 15.6(2)T1 (Cisco IOS), 15.6(1)T2 (Cisco IOS), 15.6(2)T2 (Cisco IOS), 15.3(3)JD8 (Cisco IOS), 15.6(3)M (Cisco IOS), 15.6(3)M1 (Cisco IOS), 15.6(3)M0a (Cisco IOS), 15.6(3)M1b (Cisco IOS), 15.3(3)JF2 (Cisco IOS), 15.1(4)M12c (Cisco IOS), 15.1(2)SG8a (Cisco IOS), 15.6(2)SP3b (Cisco IOS), 15.1(3)SVG3d (Cisco IOS), 15.2(3)EA1 (Cisco IOS), 15.2(4a)EA5 (Cisco IOS), 15.1(3)SVI1b (Cisco IOS), 15.3(3)JF35 (Cisco IOS), 15.1(3)SVM3 (Cisco IOS), 15.1(3)SVN2 (Cisco IOS), 15.1(3)SVO1 (Cisco IOS), 15.1(3)SVO2 (Cisco IOS), 15.3(3)JI2 (Cisco IOS), 15.1(3)SVP1 (Cisco IOS), 15.5(3)M4b (Cisco IOS), 15.5(3)M4c (Cisco IOS), 15.5(3)M5a (Cisco IOS), 15.3(3)JA1n (Cisco IOS), 15.5(3)SN0a (Cisco IOS), 15.3(3)JNP (Cisco IOS), 15.3(3)JNP1 (Cisco IOS), 15.3(3)JNP3 (Cisco IOS), 15.6(1)SN (Cisco IOS), 15.6(1)SN1 (Cisco IOS), 15.6(1)SN2 (Cisco IOS), 15.6(1)SN3 (Cisco IOS), 15.6(3)SN (Cisco IOS), 15.6(4)SN (Cisco IOS), 15.6(5)SN (Cisco IOS), 15.6(6)SN (Cisco IOS), 15.6(7)SN (Cisco IOS), 15.3(3)JPB (Cisco IOS), 15.3(3)JPB1 (Cisco IOS), 15.3(3)JD (Cisco IOS), 15.3(3)JD2 (Cisco IOS), 15.3(3)JD3 (Cisco IOS), 15.3(3)JD4 (Cisco IOS), 15.3(3)JD5 (Cisco IOS), 15.3(3)JD6 (Cisco IOS), 15.3(3)JD7 (Cisco IOS), 15.3(3)JD9 (Cisco IOS), 15.3(3)JD11 (Cisco IOS), 15.3(3)JD12 (Cisco IOS), 15.3(3)JD13 (Cisco IOS), 15.3(3)JD14 (Cisco IOS), 15.6(3)M1a (Cisco IOS), 15.3(3)JPC (Cisco IOS), 15.3(3)JPC1 (Cisco IOS), 15.3(3)JPC2 (Cisco IOS), 15.3(3)JPC3 (Cisco IOS), 15.3(3)JPC5 (Cisco IOS), 15.3(3)JE (Cisco IOS), 15.3(3)JPD (Cisco IOS), 15.3(3)JF (Cisco IOS), 15.3(3)JF1 (Cisco IOS), 15.3(3)JF4 (Cisco IOS), 15.3(3)JF5 (Cisco IOS), 15.3(3)JG (Cisco IOS), 15.3(3)JG1 (Cisco IOS), 15.3(3)JH (Cisco IOS), 15.1(3)SVO3 (Cisco IOS), 15.1(3)SVO4 (Cisco IOS), 15.1(3)SVK4b (Cisco IOS), 15.1(3)SVK4c (Cisco IOS), 15.3(3)JI (Cisco IOS), 15.5(3)M2a (Cisco IOS), 15.6(2)T0a (Cisco IOS)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418c\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439: \nhttps://tools.cisco.com/security/center/viewErp.x?alertId=ERP-71141",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "27.03.2019",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "12.04.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-01334",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2019-1740",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Cisco IOS",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0438 Network-Based Application Recognition \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Cisco IOS \u0438 Cisco IOS XE, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0438 Network-Based Application Recognition \u0432 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 Cisco IOS \u0438 Cisco IOS XE \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043e\u0448\u0438\u0431\u043e\u043a \u0441\u0438\u043d\u0442\u0430\u043a\u0441\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0430\u043d\u0430\u043b\u0438\u0437\u0430 DNS-\u043f\u0430\u043a\u0435\u0442\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0435\u043c\u0443 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043f\u0435\u0440\u0435\u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0433\u043e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0443\u044e \u043a \u043e\u0442\u043a\u0430\u0437\u0443 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 DNS-\u043f\u0430\u043a\u0435\u0442\u043e\u0432",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}
BDU:2019-01335
Vulnerability from fstec - Published: 28.03.2019
VLAI
Title
Уязвимость реализации технологии Network-Based Application Recognition операционных систем Cisco IOS и Cisco IOS XE, позволяющая нарушителю вызвать отказ в обслуживании
Description
Уязвимость реализации технологии Network-Based Application Recognition в операционных системах Cisco IOS и Cisco IOS XE существует из-за ошибок синтаксического анализа DNS-пакетов. Эксплуатация уязвимости может позволить нарушителю, действующему удаленно, не прошедшему проверку подлинности, вызвать перезагрузку уязвимого устройства, приводящую к отказу в обслуживании путем отправки специально сформированных DNS-пакетов
Severity
Vendor
Cisco Systems Inc.
Software Name
Cisco IOS XE
Software Version
3.16.1as (Cisco IOS XE), 3.16.2as (Cisco IOS XE), 3.16.2s (Cisco IOS XE), 3.17.0s (Cisco IOS XE), 3.17.1s (Cisco IOS XE), 3.18.0s (Cisco IOS XE), 16.5.1 (Cisco IOS XE), 3.2.0JA (Cisco IOS XE), 16.3.1a (Cisco IOS XE), 16.5.1a (Cisco IOS XE), 16.2.1 (Cisco IOS XE), 16.2.2 (Cisco IOS XE), 16.3.1 (Cisco IOS XE), 16.3.4 (Cisco IOS XE), 16.4.1 (Cisco IOS XE), 16.4.3 (Cisco IOS XE), 3.16.1S (Cisco IOS XE), 3.16.0bS (Cisco IOS XE), 3.16.0cS (Cisco IOS XE), 3.16.3S (Cisco IOS XE), 3.16.2bS (Cisco IOS XE), 3.16.4aS (Cisco IOS XE), 3.16.4bS (Cisco IOS XE), 3.16.4gS (Cisco IOS XE), 3.16.5S (Cisco IOS XE), 3.16.4cS (Cisco IOS XE), 3.16.4dS (Cisco IOS XE), 3.16.4eS (Cisco IOS XE), 3.16.5aS (Cisco IOS XE), 3.17.2S (Cisco IOS XE), 3.17.1aS (Cisco IOS XE), 3.17.3S (Cisco IOS XE), 3.17.4S (Cisco IOS XE), 16.4.2 (Cisco IOS XE), 16.5.1b (Cisco IOS XE), 3.16.0aS (Cisco IOS XE), 3.16.3aS (Cisco IOS XE), 3.16.4S (Cisco IOS XE), 3.18.0aS (Cisco IOS XE), 3.18.1S (Cisco IOS XE), 3.18.2S (Cisco IOS XE), 3.18.3S (Cisco IOS XE), 3.18.4S (Cisco IOS XE), 3.18.0SP (Cisco IOS XE), 3.18.1aSP (Cisco IOS XE), 3.18.1gSP (Cisco IOS XE), 3.18.1bSP (Cisco IOS XE), 3.18.1cSP (Cisco IOS XE), 3.18.2SP (Cisco IOS XE), 3.18.1hSP (Cisco IOS XE), 3.18.2aSP (Cisco IOS XE), 3.18.1iSP (Cisco IOS XE)
Possible Mitigations
Иcпользование рекомендаций:
https://tools.cisco.com/security/center/viewErp.x?alertId=ERP-71141
Reference
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar
CWE
CWE-20
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "Cisco Systems Inc.",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "3.16.1as (Cisco IOS XE), 3.16.2as (Cisco IOS XE), 3.16.2s (Cisco IOS XE), 3.17.0s (Cisco IOS XE), 3.17.1s (Cisco IOS XE), 3.18.0s (Cisco IOS XE), 16.5.1 (Cisco IOS XE), 3.2.0JA (Cisco IOS XE), 16.3.1a (Cisco IOS XE), 16.5.1a (Cisco IOS XE), 16.2.1 (Cisco IOS XE), 16.2.2 (Cisco IOS XE), 16.3.1 (Cisco IOS XE), 16.3.4 (Cisco IOS XE), 16.4.1 (Cisco IOS XE), 16.4.3 (Cisco IOS XE), 3.16.1S (Cisco IOS XE), 3.16.0bS (Cisco IOS XE), 3.16.0cS (Cisco IOS XE), 3.16.3S (Cisco IOS XE), 3.16.2bS (Cisco IOS XE), 3.16.4aS (Cisco IOS XE), 3.16.4bS (Cisco IOS XE), 3.16.4gS (Cisco IOS XE), 3.16.5S (Cisco IOS XE), 3.16.4cS (Cisco IOS XE), 3.16.4dS (Cisco IOS XE), 3.16.4eS (Cisco IOS XE), 3.16.5aS (Cisco IOS XE), 3.17.2S (Cisco IOS XE), 3.17.1aS (Cisco IOS XE), 3.17.3S (Cisco IOS XE), 3.17.4S (Cisco IOS XE), 16.4.2 (Cisco IOS XE), 16.5.1b (Cisco IOS XE), 3.16.0aS (Cisco IOS XE), 3.16.3aS (Cisco IOS XE), 3.16.4S (Cisco IOS XE), 3.18.0aS (Cisco IOS XE), 3.18.1S (Cisco IOS XE), 3.18.2S (Cisco IOS XE), 3.18.3S (Cisco IOS XE), 3.18.4S (Cisco IOS XE), 3.18.0SP (Cisco IOS XE), 3.18.1aSP (Cisco IOS XE), 3.18.1gSP (Cisco IOS XE), 3.18.1bSP (Cisco IOS XE), 3.18.1cSP (Cisco IOS XE), 3.18.2SP (Cisco IOS XE), 3.18.1hSP (Cisco IOS XE), 3.18.2aSP (Cisco IOS XE), 3.18.1iSP (Cisco IOS XE)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0418c\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439: \nhttps://tools.cisco.com/security/center/viewErp.x?alertId=ERP-71141",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "28.03.2019",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "23.03.2021",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "12.04.2019",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2019-01335",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2019-1740",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Cisco IOS XE",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": null,
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0438 Network-Based Application Recognition \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c Cisco IOS \u0438 Cisco IOS XE, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043e\u0447\u043d\u0430\u044f \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0430 \u0432\u0432\u043e\u0434\u0438\u043c\u044b\u0445 \u0434\u0430\u043d\u043d\u044b\u0445 (CWE-20)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0440\u0435\u0430\u043b\u0438\u0437\u0430\u0446\u0438\u0438 \u0442\u0435\u0445\u043d\u043e\u043b\u043e\u0433\u0438\u0438 Network-Based Application Recognition \u0432 \u043e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c\u0430\u0445 Cisco IOS \u0438 Cisco IOS XE \u0441\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0438\u0437-\u0437\u0430 \u043e\u0448\u0438\u0431\u043e\u043a \u0441\u0438\u043d\u0442\u0430\u043a\u0441\u0438\u0447\u0435\u0441\u043a\u043e\u0433\u043e \u0430\u043d\u0430\u043b\u0438\u0437\u0430 DNS-\u043f\u0430\u043a\u0435\u0442\u043e\u0432. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043c\u043e\u0436\u0435\u0442 \u043f\u043e\u0437\u0432\u043e\u043b\u0438\u0442\u044c \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043d\u0435 \u043f\u0440\u043e\u0448\u0435\u0434\u0448\u0435\u043c\u0443 \u043f\u0440\u043e\u0432\u0435\u0440\u043a\u0443 \u043f\u043e\u0434\u043b\u0438\u043d\u043d\u043e\u0441\u0442\u0438, \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043f\u0435\u0440\u0435\u0437\u0430\u0433\u0440\u0443\u0437\u043a\u0443 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0433\u043e \u0443\u0441\u0442\u0440\u043e\u0439\u0441\u0442\u0432\u0430, \u043f\u0440\u0438\u0432\u043e\u0434\u044f\u0449\u0443\u044e \u043a \u043e\u0442\u043a\u0430\u0437\u0443 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438 \u043f\u0443\u0442\u0435\u043c \u043e\u0442\u043f\u0440\u0430\u0432\u043a\u0438 \u0441\u043f\u0435\u0446\u0438\u0430\u043b\u044c\u043d\u043e \u0441\u0444\u043e\u0440\u043c\u0438\u0440\u043e\u0432\u0430\u043d\u043d\u044b\u0445 DNS-\u043f\u0430\u043a\u0435\u0442\u043e\u0432",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": "-",
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041c\u0430\u043d\u0438\u043f\u0443\u043b\u0438\u0440\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u0441\u0443\u0440\u0441\u0430\u043c\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u041e \u0441\u0435\u0442\u0435\u0432\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e-\u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0433\u043e \u0441\u0440\u0435\u0434\u0441\u0442\u0432\u0430",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-20",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,8)\n\u0412\u044b\u0441\u043e\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 7,5)"
}
CERTFR-2019-AVI-133
Vulnerability from certfr_avis - Published: 2019-03-28 - Updated: 2019-03-28
De multiples vulnérabilités ont été découvertes dans les produits Cisco. Certaines d'entre elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et une atteinte à la confidentialité des données.
Solution
Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).
NoneImpacted products
| Vendor | Product | Description | ||
|---|---|---|---|---|
| Cisco | IOS XE | Cisco IOS XE | ||
| Cisco | N/A | Cisco ASR 900 RSP3 | ||
| Cisco | IOS | Cisco IOS | ||
| Cisco | N/A | Cisco Catalyst 4500/4500X | ||
| Cisco | IOS XE | Routeurs Cisco avec un module Sierra Wireless WWAN cellular interface et exécutant une version logicielle Cisco IOS Release 15.8(3)M ou Cisco IOS XE Release 16.10.1 |
References
{
"$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
"affected_systems": [
{
"description": "Cisco IOS XE",
"product": {
"name": "IOS XE",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco ASR 900 RSP3",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco IOS",
"product": {
"name": "IOS",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Cisco Catalyst 4500/4500X",
"product": {
"name": "N/A",
"vendor": {
"name": "Cisco",
"scada": false
}
}
},
{
"description": "Routeurs Cisco avec un module Sierra Wireless WWAN cellular interface et ex\u00e9cutant une version logicielle Cisco IOS Release 15.8(3)M ou Cisco IOS XE Release 16.10.1",
"product": {
"name": "IOS XE",
"vendor": {
"name": "Cisco",
"scada": false
}
}
}
],
"affected_systems_content": null,
"content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
"cves": [
{
"name": "CVE-2019-1752",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1752"
},
{
"name": "CVE-2019-1743",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1743"
},
{
"name": "CVE-2019-1749",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1749"
},
{
"name": "CVE-2019-1739",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1739"
},
{
"name": "CVE-2019-1753",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1753"
},
{
"name": "CVE-2019-1751",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1751"
},
{
"name": "CVE-2019-1748",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1748"
},
{
"name": "CVE-2019-1755",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1755"
},
{
"name": "CVE-2019-1747",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1747"
},
{
"name": "CVE-2019-1742",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1742"
},
{
"name": "CVE-2019-1741",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1741"
},
{
"name": "CVE-2019-1738",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1738"
},
{
"name": "CVE-2019-1746",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1746"
},
{
"name": "CVE-2019-1756",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1756"
},
{
"name": "CVE-2019-1737",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1737"
},
{
"name": "CVE-2019-1754",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1754"
},
{
"name": "CVE-2019-1745",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1745"
},
{
"name": "CVE-2019-1740",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1740"
},
{
"name": "CVE-2019-1750",
"url": "https://www.cve.org/CVERecord?id=CVE-2019-1750"
}
],
"initial_release_date": "2019-03-28T00:00:00",
"last_revision_date": "2019-03-28T00:00:00",
"links": [],
"reference": "CERTFR-2019-AVI-133",
"revisions": [
{
"description": "Version initiale",
"revision_date": "2019-03-28T00:00:00.000000"
}
],
"risks": [
{
"description": "D\u00e9ni de service \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
},
{
"description": "Ex\u00e9cution de code arbitraire"
},
{
"description": "Atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es"
},
{
"description": "\u00c9l\u00e9vation de privil\u00e8ges"
}
],
"summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 d\u00e9couvertes dans les produits Cisco.\nCertaines d\u0027entre elles permettent \u00e0 un attaquant de provoquer une\nex\u00e9cution de code arbitraire \u00e0 distance, un d\u00e9ni de service \u00e0 distance\net une atteinte \u00e0 la confidentialit\u00e9 des donn\u00e9es.\n",
"title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
"vendor_advisories": [
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-afu du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-afu"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-nat64 du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nat64"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-ipsla-dos du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-ipsla-dos"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-cmp-dos du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-cmp-dos"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-sms-dos du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-sms-dos"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-isdn du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-isdn"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-xecmd du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-xecmd"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-iosxe-cmdinject du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-cmdinject"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-evss du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-evss"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-iosxe-cmdinj du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-cmdinj"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-nbar du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-pnp-cert du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-pnp-cert"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-rsp3-ospf du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-rsp3-ospf"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-eta-dos du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-eta-dos"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-iosxe-pe du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-pe"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-xeid du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-xeid"
},
{
"published_at": null,
"title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20190327-iosxe-privesc du 27 mars 2017",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-iosxe-privesc"
}
]
}
CISCO-SA-20190327-NBAR
Vulnerability from csaf_cisco - Published: 2019-03-27 16:00 - Updated: 2019-03-27 16:00Summary
Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities
Notes
Summary: Multiple vulnerabilities in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. These vulnerabilities are due to a parsing issue on DNS packets. An attacker could exploit these vulnerabilities by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.
Cisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar ["https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"]
This advisory is part of the March 27, 2019, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 17 Cisco Security Advisories that describe 19 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: March 2019 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication ["https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-71135"].
Vulnerable Products: These vulnerabilities affect routers that are running vulnerable releases of Cisco IOS or IOS XE Software and have been configured for NBAR operations.
For information about which Cisco IOS and IOS XE Software releases are vulnerable, see the Fixed Software ["#fs"] section of this advisory.
Determining the NBAR Configuration
Administrators can verify whether NBAR is in use on a device by verifying that the "show ip nbar control-plane | include NBAR state" CLI command reports the state as "ACTIVATED". If that command does not produce output, or it reports the state as "DEACTIVATED" then NBAR operation is not configured.
Here is an example of a device on which NBAR is enabled:
Router#show ip nbar control-plane | include NBAR state
NBAR state is ACTIVATED
NBAR state: ACTIVATED
Here is an example of a device on which NBAR is disabled:
Router#show ip nbar control-plane | include NBAR state
NBAR state is DEACTIVATED
NBAR state: DEACTIVATED
Determining the Cisco IOS Software Release
To determine which Cisco IOS Software release is running on a device, administrators can log in to the device, use the show version command in the CLI, and then refer to the system banner that appears. If the device is running Cisco IOS Software, the system banner displays text similar to Cisco Internetwork Operating System Software or Cisco IOS Software. The banner also displays the installed image name in parentheses, followed by the Cisco IOS Software release number and release name. Some Cisco devices do not support the show version command or may provide different output.
The following example shows the output of the command for a device that is running Cisco IOS Software Release 15.5(2)T1 and has an installed image name of C2951-UNIVERSALK9-M:
Router> show version
Cisco IOS Software, C2951 Software (C2951-UNIVERSALK9-M), Version 15.5(2)T1, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2015 by Cisco Systems, Inc. Compiled Mon 22-Jun-15 09:32 by prod_rel_team . . .
For information about the naming and numbering conventions for Cisco IOS Software releases, see the Cisco IOS and NX-OS Software Reference Guide ["https://www.cisco.com/c/en/us/about/security-center/ios-nx-os-reference-guide.html"].
Determining the Cisco IOS XE Software Release
To determine which Cisco IOS XE Software release is running on a device, administrators can log in to the device, use the show version command in the CLI, and then refer to the system banner that appears. If the device is running Cisco IOS XE Software, the system banner displays Cisco IOS Software, Cisco IOS XE Software, or similar text.
The following example shows the output of the command for a device that is running Cisco IOS XE Software Release 16.2.1 and has an installed image name of CAT3K_CAA-UNIVERSALK9-M:
ios-xe-device# show version
Cisco IOS Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version Denali 16.2.1, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2016 by Cisco Systems, Inc. Compiled Sun 27-Mar-16 21:47 by mcpre . . .
For information about the naming and numbering conventions for Cisco IOS XE Software releases, see the Cisco IOS and NX-OS Software Reference Guide ["https://www.cisco.com/c/en/us/about/security-center/ios-nx-os-reference-guide.html"].
Products Confirmed Not Vulnerable: Only products listed in the Vulnerable Products ["#vp"] section of this advisory are known to be affected by these vulnerabilities.
Cisco has confirmed that these vulnerabilities do not affect Cisco IOS XR Software or Cisco NX-OS Software.
Indicators of Compromise: A successful exploit of these vulnerabilities will cause an affected device to reload and generate a crashinfo file.
A successful exploit of these vulnerabilities may be confirmed by decoding the stack trace for the device and determining whether the stack trace correlates with these vulnerabilities.
Contact the Cisco Technical Assistance Center (TAC) to review the crashinfo file and determine whether the device has been compromised by exploitation of these vulnerabilities.
Workarounds: There are no workarounds that address these vulnerabilities. However, administrators can mitigate these vulnerabilities by disabling the NBAR feature for an affected device until the device is upgraded to a software release that addresses these vulnerabilities.
Fixed Software: Cisco has released free software updates that address the vulnerabilities described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:
https://www.cisco.com/c/en/us/products/end-user-license-agreement.html ["https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"]
Additionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.
When considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories and Alerts page ["https://www.cisco.com/go/psirt"], to determine exposure and a complete upgrade solution.
In all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.
Customers Without Service Contracts
Customers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC:
https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html ["https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"]
Customers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.
Cisco IOS and IOS XE Software
To help customers determine their exposure to vulnerabilities in Cisco IOS and IOS XE Software, Cisco provides a tool, the Cisco IOS Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"], that identifies any Cisco Security Advisories that impact a specific software release and the earliest release that fixes the vulnerabilities described in each advisory (“First Fixed”). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories identified (“Combined First Fixed”).
Customers can use this tool to perform the following tasks:
Initiate a search by choosing one or more releases from a drop-down list or uploading a file from a local system for the tool to parse
Enter the output of the show version command for the tool to parse
Create a custom search by including all previously published Cisco Security Advisories, a specific advisory, or all advisories in the most recent bundled publication
To determine whether a release is affected by any published Cisco Security Advisory, use the Cisco IOS Software Checker ["https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"] on Cisco.com or enter a Cisco IOS or IOS XE Software release—for example, 15.1(4)M2 or 3.13.8S—in the following field:
By default, the Cisco IOS Software Checker includes results only for vulnerabilities that have a Critical or High Security Impact Rating (SIR). To include results for Medium SIR vulnerabilities, use the Cisco IOS Software Checker on Cisco.com and check the Medium check box in the Impact Rating drop-down list.
For a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to the Cisco IOS XE 2 Release Notes ["https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032"], Cisco IOS XE 3S Release Notes ["https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754"], or Cisco IOS XE 3SG Release Notes ["https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252"], depending on the Cisco IOS XE Software release.
Note: Starting with Cisco IOS XE Software Release 16.9.1, any upgrade will require Smart Licensing. Customers who plan to upgrade Cisco IOS XE to Release 16.9.1 or later are advised to consider the Smart Licensing requirement. The following documentation provides additional information: Smart Licensing ["https://www.cisco.com/c/en/us/products/software/smart-accounts/software-licensing.html#~stickynav=3"].
Vulnerability Policy: To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy ["https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.
Exploitation and Public Announcements: The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.
Source: These vulnerabilities were discovered during the resolution of a support case.
Legal Disclaimer: THIS DOCUMENT IS PROVIDED ON AN "AS IS" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.
A standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.
8.6 (High)
Affected products
Known affected
171 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
3.16.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.1aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0cS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.2.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.2.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.3
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.3aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.1aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.1a
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4gS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.5S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.4
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4cS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1aSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1gSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1bSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4dS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1cSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4eS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1hSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.5aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1a
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2aSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1b
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1iSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.3
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
17.11.99SW
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)SN0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S1a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M2a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPB
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPB1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JE
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPD
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4b
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4c
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1b
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD6
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD7
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD8
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JG
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JH
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(4)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD9
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC100
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD11
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD12
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JG1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(5)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD13
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD14
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(6)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVS
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVS1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU10
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU11
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVW
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVW1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVX
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU20
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVX1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU21
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR10
Cisco / IOS
|
— |
Vendor Fix
fix
|
8.6 (High)
Affected products
Known affected
171 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
3.16.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.1aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0cS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.2.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.2.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.3
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.3aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.1aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.1a
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4gS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.5S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.4
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4cS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1aSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1gSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1bSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4dS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1cSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4eS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1hSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.5aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1a
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2aSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1b
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1iSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.3
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
17.11.99SW
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)SN0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S1a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M2a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPB
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPB1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JE
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPD
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4b
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4c
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1b
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD6
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD7
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD8
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JG
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JH
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(4)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD9
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC100
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD11
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD12
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JG1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(5)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD13
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD14
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(6)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVS
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVS1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU10
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU11
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVW
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVW1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVX
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU20
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVX1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU21
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR10
Cisco / IOS
|
— |
Vendor Fix
fix
|
8.6 (High)
Affected products
Known affected
171 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
|
3.16.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.1aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.0cS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.2.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.2.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.3
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.2
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.2bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.3aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.1aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.0SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.1a
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4bS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4gS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.5S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.3.4
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4cS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1aSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1gSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1bSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4dS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1cSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.4eS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2SP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1hSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.16.5aS
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1a
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.3S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.2aSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.5.1b
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.1iSP
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.17.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
3.18.4S
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
16.4.3
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
17.11.99SW
Cisco / Cisco IOS XE Software
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)SN0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S1a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M2a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPB
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)T2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPB1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)T2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JE
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPD
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M0a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JNP3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4b
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)S5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.5(3)M4c
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1a
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)M1b
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD6
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(2)S4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD7
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD8
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JG
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JH
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(1)SN3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(3)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(4)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD9
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC100
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JPC5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD11
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD12
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JG1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JF5
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(5)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD13
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.3(3)JD14
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(6)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVS
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.6(7)SN3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVS1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU10
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV2
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVT4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU11
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVW
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVW1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVX
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV3
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU20
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVX1
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVV4
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVU21
Cisco / IOS
|
— |
Vendor Fix
fix
|
|
|
15.1(3)SVR10
Cisco / IOS
|
— |
Vendor Fix
fix
|
References
17 references
| URL | Category |
|---|---|
| https://sec.cloudapps.cisco.com/security/center/c… | self |
| https://sec.cloudapps.cisco.com/security/center/v… | external |
| https://sec.cloudapps.cisco.com/security/center/r… | external |
| https://sec.cloudapps.cisco.com/security/center/c… | external |
| https://sec.cloudapps.cisco.com/security/center/v… | external |
| https://www.cisco.com/c/en/us/about/security-cent… | external |
| https://www.cisco.com/c/en/us/about/security-cent… | external |
| https://www.cisco.com/c/en/us/products/end-user-l… | external |
| https://www.cisco.com/go/psirt | external |
| https://www.cisco.com/c/en/us/support/web/tsd-cis… | external |
| https://sec.cloudapps.cisco.com/security/center/s… | external |
| https://sec.cloudapps.cisco.com/security/center/s… | external |
| https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/… | external |
| https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/… | external |
| https://www.cisco.com/c/en/us/td/docs/switches/la… | external |
| https://www.cisco.com/c/en/us/products/software/s… | external |
| https://sec.cloudapps.cisco.com/security/center/r… | external |
Acknowledgments
{
"document": {
"acknowledgments": [
{
"summary": "These vulnerabilities were discovered during the resolution of a support case."
}
],
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"notes": [
{
"category": "summary",
"text": "Multiple vulnerabilities in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. These vulnerabilities are due to a parsing issue on DNS packets. An attacker could exploit these vulnerabilities by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.\r\n\r\nCisco has released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.\r\n\r\n This advisory is available at the following link:\r\nhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar [\"https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar\"]\r\n\r\nThis advisory is part of the March 27, 2019, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 17 Cisco Security Advisories that describe 19 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: March 2019 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [\"https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-71135\"].",
"title": "Summary"
},
{
"category": "general",
"text": "These vulnerabilities affect routers that are running vulnerable releases of Cisco IOS or IOS XE Software and have been configured for NBAR operations.\r\n\r\nFor information about which Cisco IOS and IOS XE Software releases are vulnerable, see the Fixed Software [\"#fs\"] section of this advisory.\r\n Determining the NBAR Configuration\r\nAdministrators can verify whether NBAR is in use on a device by verifying that the \"show ip nbar control-plane | include NBAR state\" CLI command reports the state as \"ACTIVATED\". If that command does not produce output, or it reports the state as \"DEACTIVATED\" then NBAR operation is not configured.\r\n\r\nHere is an example of a device on which NBAR is enabled:\r\n\r\n\r\nRouter#show ip nbar control-plane | include NBAR state\r\nNBAR state is ACTIVATED\r\nNBAR state: ACTIVATED\r\n\r\nHere is an example of a device on which NBAR is disabled:\r\n\r\n\r\nRouter#show ip nbar control-plane | include NBAR state\r\nNBAR state is DEACTIVATED\r\nNBAR state: DEACTIVATED\r\n\r\n Determining the Cisco IOS Software Release\r\nTo determine which Cisco IOS Software release is running on a device, administrators can log in to the device, use the show version command in the CLI, and then refer to the system banner that appears. If the device is running Cisco IOS Software, the system banner displays text similar to Cisco Internetwork Operating System Software or Cisco IOS Software. The banner also displays the installed image name in parentheses, followed by the Cisco IOS Software release number and release name. Some Cisco devices do not support the show version command or may provide different output.\r\n\r\nThe following example shows the output of the command for a device that is running Cisco IOS Software Release 15.5(2)T1 and has an installed image name of C2951-UNIVERSALK9-M:\r\n\r\n\r\nRouter\u003e show version\r\n Cisco IOS Software, C2951 Software (C2951-UNIVERSALK9-M), Version 15.5(2)T1, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2015 by Cisco Systems, Inc. Compiled Mon 22-Jun-15 09:32 by prod_rel_team . . .\r\n\r\nFor information about the naming and numbering conventions for Cisco IOS Software releases, see the Cisco IOS and NX-OS Software Reference Guide [\"https://www.cisco.com/c/en/us/about/security-center/ios-nx-os-reference-guide.html\"].\r\n Determining the Cisco IOS XE Software Release\r\nTo determine which Cisco IOS XE Software release is running on a device, administrators can log in to the device, use the show version command in the CLI, and then refer to the system banner that appears. If the device is running Cisco IOS XE Software, the system banner displays Cisco IOS Software, Cisco IOS XE Software, or similar text.\r\n\r\nThe following example shows the output of the command for a device that is running Cisco IOS XE Software Release 16.2.1 and has an installed image name of CAT3K_CAA-UNIVERSALK9-M:\r\n\r\n\r\nios-xe-device# show version\r\n Cisco IOS Software, Catalyst L3 Switch Software (CAT3K_CAA-UNIVERSALK9-M), Version Denali 16.2.1, RELEASE SOFTWARE (fc1) Technical Support: http://www.cisco.com/techsupport Copyright (c) 1986-2016 by Cisco Systems, Inc. Compiled Sun 27-Mar-16 21:47 by mcpre . . .\r\n\r\nFor information about the naming and numbering conventions for Cisco IOS XE Software releases, see the Cisco IOS and NX-OS Software Reference Guide [\"https://www.cisco.com/c/en/us/about/security-center/ios-nx-os-reference-guide.html\"].",
"title": "Vulnerable Products"
},
{
"category": "general",
"text": "Only products listed in the Vulnerable Products [\"#vp\"] section of this advisory are known to be affected by these vulnerabilities.\r\n Cisco has confirmed that these vulnerabilities do not affect Cisco IOS XR Software or Cisco NX-OS Software.",
"title": "Products Confirmed Not Vulnerable"
},
{
"category": "general",
"text": "A successful exploit of these vulnerabilities will cause an affected device to reload and generate a crashinfo file.\r\n\r\n A successful exploit of these vulnerabilities may be confirmed by decoding the stack trace for the device and determining whether the stack trace correlates with these vulnerabilities.\r\n\r\n Contact the Cisco Technical Assistance Center (TAC) to review the crashinfo file and determine whether the device has been compromised by exploitation of these vulnerabilities.",
"title": "Indicators of Compromise"
},
{
"category": "general",
"text": "There are no workarounds that address these vulnerabilities. However, administrators can mitigate these vulnerabilities by disabling the NBAR feature for an affected device until the device is upgraded to a software release that addresses these vulnerabilities.",
"title": "Workarounds"
},
{
"category": "general",
"text": "Cisco has released free software updates that address the vulnerabilities described in this advisory. Customers may only install and expect support for software versions and feature sets for which they have purchased a license. By installing, downloading, accessing, or otherwise using such software upgrades, customers agree to follow the terms of the Cisco software license:\r\nhttps://www.cisco.com/c/en/us/products/end-user-license-agreement.html [\"https://www.cisco.com/c/en/us/products/end-user-license-agreement.html\"]\r\n\r\nAdditionally, customers may only download software for which they have a valid license, procured from Cisco directly, or through a Cisco authorized reseller or partner. In most cases this will be a maintenance upgrade to software that was previously purchased. Free security software updates do not entitle customers to a new software license, additional software feature sets, or major revision upgrades.\r\n\r\nWhen considering software upgrades, customers are advised to regularly consult the advisories for Cisco products, which are available from the Cisco Security Advisories and Alerts page [\"https://www.cisco.com/go/psirt\"], to determine exposure and a complete upgrade solution.\r\n\r\nIn all cases, customers should ensure that the devices to be upgraded contain sufficient memory and confirm that current hardware and software configurations will continue to be supported properly by the new release. If the information is not clear, customers are advised to contact the Cisco Technical Assistance Center (TAC) or their contracted maintenance providers.\r\n Customers Without Service Contracts\r\nCustomers who purchase directly from Cisco but do not hold a Cisco service contract and customers who make purchases through third-party vendors but are unsuccessful in obtaining fixed software through their point of sale should obtain upgrades by contacting the Cisco TAC:\r\nhttps://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html [\"https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html\"]\r\n\r\nCustomers should have the product serial number available and be prepared to provide the URL of this advisory as evidence of entitlement to a free upgrade.\r\n Cisco IOS and IOS XE Software\r\nTo help customers determine their exposure to vulnerabilities in Cisco IOS and IOS XE Software, Cisco provides a tool, the Cisco IOS Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"], that identifies any Cisco Security Advisories that impact a specific software release and the earliest release that fixes the vulnerabilities described in each advisory (\u201cFirst Fixed\u201d). If applicable, the tool also returns the earliest release that fixes all the vulnerabilities described in all the advisories identified (\u201cCombined First Fixed\u201d).\r\n\r\nCustomers can use this tool to perform the following tasks:\r\n\r\nInitiate a search by choosing one or more releases from a drop-down list or uploading a file from a local system for the tool to parse\r\nEnter the output of the show version command for the tool to parse\r\nCreate a custom search by including all previously published Cisco Security Advisories, a specific advisory, or all advisories in the most recent bundled publication\r\n\r\nTo determine whether a release is affected by any published Cisco Security Advisory, use the Cisco IOS Software Checker [\"https://sec.cloudapps.cisco.com/security/center/softwarechecker.x\"] on Cisco.com or enter a Cisco IOS or IOS XE Software release\u2014for example, 15.1(4)M2 or 3.13.8S\u2014in the following field:\r\n\r\n\r\n\r\nBy default, the Cisco IOS Software Checker includes results only for vulnerabilities that have a Critical or High Security Impact Rating (SIR). To include results for Medium SIR vulnerabilities, use the Cisco IOS Software Checker on Cisco.com and check the Medium check box in the Impact Rating drop-down list.\r\n\r\nFor a mapping of Cisco IOS XE Software releases to Cisco IOS Software releases, refer to the Cisco IOS XE 2 Release Notes [\"https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032\"], Cisco IOS XE 3S Release Notes [\"https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754\"], or Cisco IOS XE 3SG Release Notes [\"https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252\"], depending on the Cisco IOS XE Software release.\r\nNote: Starting with Cisco IOS XE Software Release 16.9.1, any upgrade will require Smart Licensing. Customers who plan to upgrade Cisco IOS XE to Release 16.9.1 or later are advised to consider the Smart Licensing requirement. The following documentation provides additional information: Smart Licensing [\"https://www.cisco.com/c/en/us/products/software/smart-accounts/software-licensing.html#~stickynav=3\"].",
"title": "Fixed Software"
},
{
"category": "general",
"text": "To learn about Cisco security vulnerability disclosure policies and publications, see the Security Vulnerability Policy [\"https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html\"]. This document also contains instructions for obtaining fixed software and receiving security vulnerability information from Cisco.",
"title": "Vulnerability Policy"
},
{
"category": "general",
"text": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.",
"title": "Exploitation and Public Announcements"
},
{
"category": "general",
"text": "These vulnerabilities were discovered during the resolution of a support case.",
"title": "Source"
},
{
"category": "legal_disclaimer",
"text": "THIS DOCUMENT IS PROVIDED ON AN \"AS IS\" BASIS AND DOES NOT IMPLY ANY KIND OF GUARANTEE OR WARRANTY, INCLUDING THE WARRANTIES OF MERCHANTABILITY OR FITNESS FOR A PARTICULAR USE. YOUR USE OF THE INFORMATION ON THE DOCUMENT OR MATERIALS LINKED FROM THE DOCUMENT IS AT YOUR OWN RISK. CISCO RESERVES THE RIGHT TO CHANGE OR UPDATE THIS DOCUMENT AT ANY TIME.\r\n\r\nA standalone copy or paraphrase of the text of this document that omits the distribution URL is an uncontrolled copy and may lack important information or contain factual errors. The information in this document is intended for end users of Cisco products.",
"title": "Legal Disclaimer"
}
],
"publisher": {
"category": "vendor",
"contact_details": "Emergency Support:\r\n+1 877 228 7302 (toll-free within North America)\r\n+1 408 525 6532 (International direct-dial)\r\nNon-emergency Support:\r\nEmail: psirt@cisco.com\r\nSupport requests that are received via e-mail are typically acknowledged within 48 hours.",
"issuing_authority": "Cisco product security incident response is the responsibility of the Cisco Product Security Incident Response Team (PSIRT). The Cisco PSIRT is a dedicated, global team that manages the receipt, investigation, and public reporting of security vulnerability information that is related to Cisco products and networks. The on-call Cisco PSIRT works 24x7 with Cisco customers, independent security researchers, consultants, industry organizations, and other vendors to identify possible security issues with Cisco products and networks.\r\nMore information can be found in Cisco Security Vulnerability Policy available at https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html",
"name": "Cisco",
"namespace": "https://wwww.cisco.com"
},
"references": [
{
"category": "self",
"summary": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"category": "external",
"summary": "Cisco Event Response: March 2019 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication",
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-71135"
},
{
"category": "external",
"summary": "Cisco Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
},
{
"category": "external",
"summary": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar",
"url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"category": "external",
"summary": "Cisco Event Response: March 2019 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication",
"url": "https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-71135"
},
{
"category": "external",
"summary": "Cisco IOS and NX-OS Software Reference Guide",
"url": "https://www.cisco.com/c/en/us/about/security-center/ios-nx-os-reference-guide.html"
},
{
"category": "external",
"summary": "Cisco IOS and NX-OS Software Reference Guide",
"url": "https://www.cisco.com/c/en/us/about/security-center/ios-nx-os-reference-guide.html"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html",
"url": "https://www.cisco.com/c/en/us/products/end-user-license-agreement.html"
},
{
"category": "external",
"summary": "Cisco Security Advisories and Alerts page",
"url": "https://www.cisco.com/go/psirt"
},
{
"category": "external",
"summary": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html",
"url": "https://www.cisco.com/c/en/us/support/web/tsd-cisco-worldwide-contacts.html"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS Software Checker",
"url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS Software Checker",
"url": "https://sec.cloudapps.cisco.com/security/center/softwarechecker.x"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 2 Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/2/release/notes/rnasr21/rnasr21_gen.html#wp3000032"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 3S Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/ios/ios_xe/3/release/notes/asr1k_rn_3s_rel_notes/asr1k_rn_3s_sys_req.html#wp3069754"
},
{
"category": "external",
"summary": "Cisco\u0026nbsp;IOS XE 3SG Release Notes",
"url": "https://www.cisco.com/c/en/us/td/docs/switches/lan/catalyst4500/release/note/OL_24726.html#pgfId-2570252"
},
{
"category": "external",
"summary": "Smart Licensing",
"url": "https://www.cisco.com/c/en/us/products/software/smart-accounts/software-licensing.html#~stickynav=3"
},
{
"category": "external",
"summary": "Security Vulnerability Policy",
"url": "https://sec.cloudapps.cisco.com/security/center/resources/security_vulnerability_policy.html"
}
],
"title": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"tracking": {
"current_release_date": "2019-03-27T16:00:00+00:00",
"generator": {
"date": "2022-09-03T03:29:40+00:00",
"engine": {
"name": "TVCE"
}
},
"id": "cisco-sa-20190327-nbar",
"initial_release_date": "2019-03-27T16:00:00+00:00",
"revision_history": [
{
"date": "2019-03-27T15:12:24+00:00",
"number": "1.0.0",
"summary": "Initial public release."
}
],
"status": "final",
"version": "1.0.0"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "15.5(3)S",
"product": {
"name": "15.5(3)S",
"product_id": "CSAFPID-204901"
}
},
{
"category": "service_pack",
"name": "15.5(3)S1",
"product": {
"name": "15.5(3)S1",
"product_id": "CSAFPID-210129"
}
},
{
"category": "service_pack",
"name": "15.5(3)S1a",
"product": {
"name": "15.5(3)S1a",
"product_id": "CSAFPID-211603"
}
},
{
"category": "service_pack",
"name": "15.5(3)S2",
"product": {
"name": "15.5(3)S2",
"product_id": "CSAFPID-212127"
}
},
{
"category": "service_pack",
"name": "15.5(3)S0a",
"product": {
"name": "15.5(3)S0a",
"product_id": "CSAFPID-213000"
}
},
{
"category": "service_pack",
"name": "15.5(3)S3",
"product": {
"name": "15.5(3)S3",
"product_id": "CSAFPID-213594"
}
},
{
"category": "service_pack",
"name": "15.5(3)S4",
"product": {
"name": "15.5(3)S4",
"product_id": "CSAFPID-218997"
}
},
{
"category": "service_pack",
"name": "15.5(3)S5",
"product": {
"name": "15.5(3)S5",
"product_id": "CSAFPID-223085"
}
}
],
"category": "product_version",
"name": "15.5S"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.5(3)M",
"product": {
"name": "15.5(3)M",
"product_id": "CSAFPID-200509"
}
},
{
"category": "service_pack",
"name": "15.5(3)M1",
"product": {
"name": "15.5(3)M1",
"product_id": "CSAFPID-209360"
}
},
{
"category": "service_pack",
"name": "15.5(3)M0a",
"product": {
"name": "15.5(3)M0a",
"product_id": "CSAFPID-209936"
}
},
{
"category": "service_pack",
"name": "15.5(3)M2",
"product": {
"name": "15.5(3)M2",
"product_id": "CSAFPID-211825"
}
},
{
"category": "service_pack",
"name": "15.5(3)M2a",
"product": {
"name": "15.5(3)M2a",
"product_id": "CSAFPID-213633"
}
},
{
"category": "service_pack",
"name": "15.5(3)M3",
"product": {
"name": "15.5(3)M3",
"product_id": "CSAFPID-213789"
}
},
{
"category": "service_pack",
"name": "15.5(3)M4",
"product": {
"name": "15.5(3)M4",
"product_id": "CSAFPID-218996"
}
},
{
"category": "service_pack",
"name": "15.5(3)M4a",
"product": {
"name": "15.5(3)M4a",
"product_id": "CSAFPID-221093"
}
},
{
"category": "service_pack",
"name": "15.5(3)M5",
"product": {
"name": "15.5(3)M5",
"product_id": "CSAFPID-222988"
}
},
{
"category": "service_pack",
"name": "15.5(3)M4b",
"product": {
"name": "15.5(3)M4b",
"product_id": "CSAFPID-222989"
}
},
{
"category": "service_pack",
"name": "15.5(3)M4c",
"product": {
"name": "15.5(3)M4c",
"product_id": "CSAFPID-223189"
}
}
],
"category": "product_version",
"name": "15.5M"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.5(3)SN0a",
"product": {
"name": "15.5(3)SN0a",
"product_id": "CSAFPID-209632"
}
},
{
"category": "service_pack",
"name": "15.5(3)SN",
"product": {
"name": "15.5(3)SN",
"product_id": "CSAFPID-213001"
}
}
],
"category": "product_version",
"name": "15.5SN"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.6(1)S",
"product": {
"name": "15.6(1)S",
"product_id": "CSAFPID-204822"
}
},
{
"category": "service_pack",
"name": "15.6(2)S",
"product": {
"name": "15.6(2)S",
"product_id": "CSAFPID-209113"
}
},
{
"category": "service_pack",
"name": "15.6(2)S1",
"product": {
"name": "15.6(2)S1",
"product_id": "CSAFPID-211984"
}
},
{
"category": "service_pack",
"name": "15.6(1)S1",
"product": {
"name": "15.6(1)S1",
"product_id": "CSAFPID-212407"
}
},
{
"category": "service_pack",
"name": "15.6(1)S2",
"product": {
"name": "15.6(1)S2",
"product_id": "CSAFPID-214161"
}
},
{
"category": "service_pack",
"name": "15.6(2)S2",
"product": {
"name": "15.6(2)S2",
"product_id": "CSAFPID-216961"
}
},
{
"category": "service_pack",
"name": "15.6(1)S3",
"product": {
"name": "15.6(1)S3",
"product_id": "CSAFPID-222931"
}
},
{
"category": "service_pack",
"name": "15.6(2)S3",
"product": {
"name": "15.6(2)S3",
"product_id": "CSAFPID-226076"
}
},
{
"category": "service_pack",
"name": "15.6(1)S4",
"product": {
"name": "15.6(1)S4",
"product_id": "CSAFPID-227612"
}
},
{
"category": "service_pack",
"name": "15.6(2)S4",
"product": {
"name": "15.6(2)S4",
"product_id": "CSAFPID-228195"
}
}
],
"category": "product_version",
"name": "15.6S"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.6(1)T",
"product": {
"name": "15.6(1)T",
"product_id": "CSAFPID-205516"
}
},
{
"category": "service_pack",
"name": "15.6(2)T",
"product": {
"name": "15.6(2)T",
"product_id": "CSAFPID-209115"
}
},
{
"category": "service_pack",
"name": "15.6(1)T0a",
"product": {
"name": "15.6(1)T0a",
"product_id": "CSAFPID-212118"
}
},
{
"category": "service_pack",
"name": "15.6(1)T1",
"product": {
"name": "15.6(1)T1",
"product_id": "CSAFPID-212445"
}
},
{
"category": "service_pack",
"name": "15.6(2)T1",
"product": {
"name": "15.6(2)T1",
"product_id": "CSAFPID-214938"
}
},
{
"category": "service_pack",
"name": "15.6(1)T2",
"product": {
"name": "15.6(1)T2",
"product_id": "CSAFPID-216215"
}
},
{
"category": "service_pack",
"name": "15.6(2)T0a",
"product": {
"name": "15.6(2)T0a",
"product_id": "CSAFPID-216239"
}
},
{
"category": "service_pack",
"name": "15.6(2)T2",
"product": {
"name": "15.6(2)T2",
"product_id": "CSAFPID-216962"
}
}
],
"category": "product_version",
"name": "15.6T"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JNP",
"product": {
"name": "15.3(3)JNP",
"product_id": "CSAFPID-211256"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNP1",
"product": {
"name": "15.3(3)JNP1",
"product_id": "CSAFPID-212686"
}
},
{
"category": "service_pack",
"name": "15.3(3)JNP3",
"product": {
"name": "15.3(3)JNP3",
"product_id": "CSAFPID-220657"
}
}
],
"category": "product_version",
"name": "15.3JNP"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.6(1)SN",
"product": {
"name": "15.6(1)SN",
"product_id": "CSAFPID-213034"
}
},
{
"category": "service_pack",
"name": "15.6(1)SN1",
"product": {
"name": "15.6(1)SN1",
"product_id": "CSAFPID-213086"
}
},
{
"category": "service_pack",
"name": "15.6(2)SN",
"product": {
"name": "15.6(2)SN",
"product_id": "CSAFPID-216419"
}
},
{
"category": "service_pack",
"name": "15.6(1)SN2",
"product": {
"name": "15.6(1)SN2",
"product_id": "CSAFPID-230612"
}
},
{
"category": "service_pack",
"name": "15.6(1)SN3",
"product": {
"name": "15.6(1)SN3",
"product_id": "CSAFPID-230613"
}
},
{
"category": "service_pack",
"name": "15.6(3)SN",
"product": {
"name": "15.6(3)SN",
"product_id": "CSAFPID-230614"
}
},
{
"category": "service_pack",
"name": "15.6(4)SN",
"product": {
"name": "15.6(4)SN",
"product_id": "CSAFPID-230616"
}
},
{
"category": "service_pack",
"name": "15.6(5)SN",
"product": {
"name": "15.6(5)SN",
"product_id": "CSAFPID-232093"
}
},
{
"category": "service_pack",
"name": "15.6(6)SN",
"product": {
"name": "15.6(6)SN",
"product_id": "CSAFPID-236297"
}
},
{
"category": "service_pack",
"name": "15.6(7)SN",
"product": {
"name": "15.6(7)SN",
"product_id": "CSAFPID-254081"
}
},
{
"category": "service_pack",
"name": "15.6(7)SN1",
"product": {
"name": "15.6(7)SN1",
"product_id": "CSAFPID-262382"
}
},
{
"category": "service_pack",
"name": "15.6(7)SN2",
"product": {
"name": "15.6(7)SN2",
"product_id": "CSAFPID-275327"
}
},
{
"category": "service_pack",
"name": "15.6(7)SN3",
"product": {
"name": "15.6(7)SN3",
"product_id": "CSAFPID-278136"
}
}
],
"category": "product_version",
"name": "15.6SN"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPB",
"product": {
"name": "15.3(3)JPB",
"product_id": "CSAFPID-213843"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPB1",
"product": {
"name": "15.3(3)JPB1",
"product_id": "CSAFPID-216277"
}
}
],
"category": "product_version",
"name": "15.3JPB"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JD",
"product": {
"name": "15.3(3)JD",
"product_id": "CSAFPID-213954"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD2",
"product": {
"name": "15.3(3)JD2",
"product_id": "CSAFPID-222630"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD3",
"product": {
"name": "15.3(3)JD3",
"product_id": "CSAFPID-222716"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD4",
"product": {
"name": "15.3(3)JD4",
"product_id": "CSAFPID-225790"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD5",
"product": {
"name": "15.3(3)JD5",
"product_id": "CSAFPID-226172"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD6",
"product": {
"name": "15.3(3)JD6",
"product_id": "CSAFPID-227789"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD7",
"product": {
"name": "15.3(3)JD7",
"product_id": "CSAFPID-228955"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD8",
"product": {
"name": "15.3(3)JD8",
"product_id": "CSAFPID-230598"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD9",
"product": {
"name": "15.3(3)JD9",
"product_id": "CSAFPID-230824"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD11",
"product": {
"name": "15.3(3)JD11",
"product_id": "CSAFPID-231000"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD12",
"product": {
"name": "15.3(3)JD12",
"product_id": "CSAFPID-231001"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD13",
"product": {
"name": "15.3(3)JD13",
"product_id": "CSAFPID-232852"
}
},
{
"category": "service_pack",
"name": "15.3(3)JD14",
"product": {
"name": "15.3(3)JD14",
"product_id": "CSAFPID-234115"
}
}
],
"category": "product_version",
"name": "15.3JD"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.6(3)M",
"product": {
"name": "15.6(3)M",
"product_id": "CSAFPID-214074"
}
},
{
"category": "service_pack",
"name": "15.6(3)M1",
"product": {
"name": "15.6(3)M1",
"product_id": "CSAFPID-220396"
}
},
{
"category": "service_pack",
"name": "15.6(3)M0a",
"product": {
"name": "15.6(3)M0a",
"product_id": "CSAFPID-220522"
}
},
{
"category": "service_pack",
"name": "15.6(3)M1a",
"product": {
"name": "15.6(3)M1a",
"product_id": "CSAFPID-224327"
}
},
{
"category": "service_pack",
"name": "15.6(3)M1b",
"product": {
"name": "15.6(3)M1b",
"product_id": "CSAFPID-224443"
}
}
],
"category": "product_version",
"name": "15.6M"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPC",
"product": {
"name": "15.3(3)JPC",
"product_id": "CSAFPID-217048"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC1",
"product": {
"name": "15.3(3)JPC1",
"product_id": "CSAFPID-220235"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC2",
"product": {
"name": "15.3(3)JPC2",
"product_id": "CSAFPID-220658"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC3",
"product": {
"name": "15.3(3)JPC3",
"product_id": "CSAFPID-225167"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC100",
"product": {
"name": "15.3(3)JPC100",
"product_id": "CSAFPID-230994"
}
},
{
"category": "service_pack",
"name": "15.3(3)JPC5",
"product": {
"name": "15.3(3)JPC5",
"product_id": "CSAFPID-230995"
}
}
],
"category": "product_version",
"name": "15.3JPC"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JE",
"product": {
"name": "15.3(3)JE",
"product_id": "CSAFPID-218946"
}
}
],
"category": "product_version",
"name": "15.3JE"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JPD",
"product": {
"name": "15.3(3)JPD",
"product_id": "CSAFPID-218948"
}
}
],
"category": "product_version",
"name": "15.3JPD"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JF",
"product": {
"name": "15.3(3)JF",
"product_id": "CSAFPID-227048"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF1",
"product": {
"name": "15.3(3)JF1",
"product_id": "CSAFPID-228956"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF2",
"product": {
"name": "15.3(3)JF2",
"product_id": "CSAFPID-230826"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF4",
"product": {
"name": "15.3(3)JF4",
"product_id": "CSAFPID-231679"
}
},
{
"category": "service_pack",
"name": "15.3(3)JF5",
"product": {
"name": "15.3(3)JF5",
"product_id": "CSAFPID-232061"
}
}
],
"category": "product_version",
"name": "15.3JF"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JG",
"product": {
"name": "15.3(3)JG",
"product_id": "CSAFPID-230603"
}
},
{
"category": "service_pack",
"name": "15.3(3)JG1",
"product": {
"name": "15.3(3)JG1",
"product_id": "CSAFPID-231796"
}
}
],
"category": "product_version",
"name": "15.3JG"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.3(3)JH",
"product": {
"name": "15.3(3)JH",
"product_id": "CSAFPID-230605"
}
}
],
"category": "product_version",
"name": "15.3JH"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVR1",
"product": {
"name": "15.1(3)SVR1",
"product_id": "CSAFPID-277230"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVR2",
"product": {
"name": "15.1(3)SVR2",
"product_id": "CSAFPID-277253"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVR3",
"product": {
"name": "15.1(3)SVR3",
"product_id": "CSAFPID-279337"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVR10",
"product": {
"name": "15.1(3)SVR10",
"product_id": "CSAFPID-290618"
}
}
],
"category": "product_version",
"name": "15.1SVR"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVS",
"product": {
"name": "15.1(3)SVS",
"product_id": "CSAFPID-277232"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVS1",
"product": {
"name": "15.1(3)SVS1",
"product_id": "CSAFPID-279335"
}
}
],
"category": "product_version",
"name": "15.1SVS"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVT1",
"product": {
"name": "15.1(3)SVT1",
"product_id": "CSAFPID-280759"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVT2",
"product": {
"name": "15.1(3)SVT2",
"product_id": "CSAFPID-282026"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVT3",
"product": {
"name": "15.1(3)SVT3",
"product_id": "CSAFPID-284785"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVT4",
"product": {
"name": "15.1(3)SVT4",
"product_id": "CSAFPID-286399"
}
}
],
"category": "product_version",
"name": "15.1SVT"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVU1",
"product": {
"name": "15.1(3)SVU1",
"product_id": "CSAFPID-283833"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVU10",
"product": {
"name": "15.1(3)SVU10",
"product_id": "CSAFPID-284291"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVU2",
"product": {
"name": "15.1(3)SVU2",
"product_id": "CSAFPID-284566"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVU11",
"product": {
"name": "15.1(3)SVU11",
"product_id": "CSAFPID-286400"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVU20",
"product": {
"name": "15.1(3)SVU20",
"product_id": "CSAFPID-289270"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVU21",
"product": {
"name": "15.1(3)SVU21",
"product_id": "CSAFPID-290557"
}
}
],
"category": "product_version",
"name": "15.1SVU"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVV1",
"product": {
"name": "15.1(3)SVV1",
"product_id": "CSAFPID-284341"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVV2",
"product": {
"name": "15.1(3)SVV2",
"product_id": "CSAFPID-286029"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVV3",
"product": {
"name": "15.1(3)SVV3",
"product_id": "CSAFPID-286940"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVV4",
"product": {
"name": "15.1(3)SVV4",
"product_id": "CSAFPID-289371"
}
}
],
"category": "product_version",
"name": "15.1SVV"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVW",
"product": {
"name": "15.1(3)SVW",
"product_id": "CSAFPID-286451"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVW1",
"product": {
"name": "15.1(3)SVW1",
"product_id": "CSAFPID-286844"
}
}
],
"category": "product_version",
"name": "15.1SVW"
},
{
"branches": [
{
"category": "service_pack",
"name": "15.1(3)SVX",
"product": {
"name": "15.1(3)SVX",
"product_id": "CSAFPID-286927"
}
},
{
"category": "service_pack",
"name": "15.1(3)SVX1",
"product": {
"name": "15.1(3)SVX1",
"product_id": "CSAFPID-289301"
}
}
],
"category": "product_version",
"name": "15.1SVX"
}
],
"category": "product_family",
"name": "IOS"
},
{
"branches": [
{
"branches": [
{
"category": "service_pack",
"name": "3.16.0S",
"product": {
"name": "3.16.0S",
"product_id": "CSAFPID-210081"
}
},
{
"category": "service_pack",
"name": "3.16.1S",
"product": {
"name": "3.16.1S",
"product_id": "CSAFPID-212408"
}
},
{
"category": "service_pack",
"name": "3.16.0aS",
"product": {
"name": "3.16.0aS",
"product_id": "CSAFPID-213476"
}
},
{
"category": "service_pack",
"name": "3.16.1aS",
"product": {
"name": "3.16.1aS",
"product_id": "CSAFPID-213477"
}
},
{
"category": "service_pack",
"name": "3.16.2S",
"product": {
"name": "3.16.2S",
"product_id": "CSAFPID-213478"
}
},
{
"category": "service_pack",
"name": "3.16.2aS",
"product": {
"name": "3.16.2aS",
"product_id": "CSAFPID-213635"
}
},
{
"category": "service_pack",
"name": "3.16.0bS",
"product": {
"name": "3.16.0bS",
"product_id": "CSAFPID-213777"
}
},
{
"category": "service_pack",
"name": "3.16.0cS",
"product": {
"name": "3.16.0cS",
"product_id": "CSAFPID-213778"
}
},
{
"category": "service_pack",
"name": "3.16.3S",
"product": {
"name": "3.16.3S",
"product_id": "CSAFPID-213779"
}
},
{
"category": "service_pack",
"name": "3.16.2bS",
"product": {
"name": "3.16.2bS",
"product_id": "CSAFPID-217265"
}
},
{
"category": "service_pack",
"name": "3.16.3aS",
"product": {
"name": "3.16.3aS",
"product_id": "CSAFPID-217266"
}
},
{
"category": "service_pack",
"name": "3.16.4S",
"product": {
"name": "3.16.4S",
"product_id": "CSAFPID-217267"
}
},
{
"category": "service_pack",
"name": "3.16.4aS",
"product": {
"name": "3.16.4aS",
"product_id": "CSAFPID-220993"
}
},
{
"category": "service_pack",
"name": "3.16.4bS",
"product": {
"name": "3.16.4bS",
"product_id": "CSAFPID-222257"
}
},
{
"category": "service_pack",
"name": "3.16.4gS",
"product": {
"name": "3.16.4gS",
"product_id": "CSAFPID-222693"
}
},
{
"category": "service_pack",
"name": "3.16.5S",
"product": {
"name": "3.16.5S",
"product_id": "CSAFPID-222694"
}
},
{
"category": "service_pack",
"name": "3.16.4cS",
"product": {
"name": "3.16.4cS",
"product_id": "CSAFPID-222925"
}
},
{
"category": "service_pack",
"name": "3.16.4dS",
"product": {
"name": "3.16.4dS",
"product_id": "CSAFPID-223252"
}
},
{
"category": "service_pack",
"name": "3.16.4eS",
"product": {
"name": "3.16.4eS",
"product_id": "CSAFPID-224702"
}
},
{
"category": "service_pack",
"name": "3.16.5aS",
"product": {
"name": "3.16.5aS",
"product_id": "CSAFPID-225466"
}
}
],
"category": "product_version",
"name": "3.16S"
},
{
"branches": [
{
"category": "service_pack",
"name": "3.17.0S",
"product": {
"name": "3.17.0S",
"product_id": "CSAFPID-212411"
}
},
{
"category": "service_pack",
"name": "3.17.1S",
"product": {
"name": "3.17.1S",
"product_id": "CSAFPID-212412"
}
},
{
"category": "service_pack",
"name": "3.17.2S",
"product": {
"name": "3.17.2S",
"product_id": "CSAFPID-217234"
}
},
{
"category": "service_pack",
"name": "3.17.1aS",
"product": {
"name": "3.17.1aS",
"product_id": "CSAFPID-217268"
}
},
{
"category": "service_pack",
"name": "3.17.3S",
"product": {
"name": "3.17.3S",
"product_id": "CSAFPID-222942"
}
},
{
"category": "service_pack",
"name": "3.17.4S",
"product": {
"name": "3.17.4S",
"product_id": "CSAFPID-227556"
}
}
],
"category": "product_version",
"name": "3.17S"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.2.1",
"product": {
"name": "16.2.1",
"product_id": "CSAFPID-213809"
}
},
{
"category": "service_pack",
"name": "16.2.2",
"product": {
"name": "16.2.2",
"product_id": "CSAFPID-217253"
}
}
],
"category": "product_version",
"name": "16.2"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.3.1",
"product": {
"name": "16.3.1",
"product_id": "CSAFPID-213960"
}
},
{
"category": "service_pack",
"name": "16.3.2",
"product": {
"name": "16.3.2",
"product_id": "CSAFPID-217255"
}
},
{
"category": "service_pack",
"name": "16.3.3",
"product": {
"name": "16.3.3",
"product_id": "CSAFPID-217256"
}
},
{
"category": "service_pack",
"name": "16.3.1a",
"product": {
"name": "16.3.1a",
"product_id": "CSAFPID-220802"
}
},
{
"category": "service_pack",
"name": "16.3.4",
"product": {
"name": "16.3.4",
"product_id": "CSAFPID-222711"
}
}
],
"category": "product_version",
"name": "16.3"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.4.1",
"product": {
"name": "16.4.1",
"product_id": "CSAFPID-214051"
}
},
{
"category": "service_pack",
"name": "16.4.2",
"product": {
"name": "16.4.2",
"product_id": "CSAFPID-217257"
}
},
{
"category": "service_pack",
"name": "16.4.3",
"product": {
"name": "16.4.3",
"product_id": "CSAFPID-231390"
}
}
],
"category": "product_version",
"name": "16.4"
},
{
"branches": [
{
"category": "service_pack",
"name": "16.5.1",
"product": {
"name": "16.5.1",
"product_id": "CSAFPID-217259"
}
},
{
"category": "service_pack",
"name": "16.5.1a",
"product": {
"name": "16.5.1a",
"product_id": "CSAFPID-225784"
}
},
{
"category": "service_pack",
"name": "16.5.1b",
"product": {
"name": "16.5.1b",
"product_id": "CSAFPID-226330"
}
}
],
"category": "product_version",
"name": "16.5"
},
{
"branches": [
{
"category": "service_pack",
"name": "3.18.0aS",
"product": {
"name": "3.18.0aS",
"product_id": "CSAFPID-217270"
}
},
{
"category": "service_pack",
"name": "3.18.0S",
"product": {
"name": "3.18.0S",
"product_id": "CSAFPID-217271"
}
},
{
"category": "service_pack",
"name": "3.18.1S",
"product": {
"name": "3.18.1S",
"product_id": "CSAFPID-217272"
}
},
{
"category": "service_pack",
"name": "3.18.2S",
"product": {
"name": "3.18.2S",
"product_id": "CSAFPID-217273"
}
},
{
"category": "service_pack",
"name": "3.18.3S",
"product": {
"name": "3.18.3S",
"product_id": "CSAFPID-226078"
}
},
{
"category": "service_pack",
"name": "3.18.4S",
"product": {
"name": "3.18.4S",
"product_id": "CSAFPID-228193"
}
}
],
"category": "product_version",
"name": "3.18S"
},
{
"branches": [
{
"category": "service_pack",
"name": "3.18.0SP",
"product": {
"name": "3.18.0SP",
"product_id": "CSAFPID-217276"
}
},
{
"category": "service_pack",
"name": "3.18.1SP",
"product": {
"name": "3.18.1SP",
"product_id": "CSAFPID-220517"
}
},
{
"category": "service_pack",
"name": "3.18.1aSP",
"product": {
"name": "3.18.1aSP",
"product_id": "CSAFPID-223018"
}
},
{
"category": "service_pack",
"name": "3.18.1gSP",
"product": {
"name": "3.18.1gSP",
"product_id": "CSAFPID-223019"
}
},
{
"category": "service_pack",
"name": "3.18.1bSP",
"product": {
"name": "3.18.1bSP",
"product_id": "CSAFPID-223241"
}
},
{
"category": "service_pack",
"name": "3.18.1cSP",
"product": {
"name": "3.18.1cSP",
"product_id": "CSAFPID-224424"
}
},
{
"category": "service_pack",
"name": "3.18.2SP",
"product": {
"name": "3.18.2SP",
"product_id": "CSAFPID-225168"
}
},
{
"category": "service_pack",
"name": "3.18.1hSP",
"product": {
"name": "3.18.1hSP",
"product_id": "CSAFPID-225359"
}
},
{
"category": "service_pack",
"name": "3.18.2aSP",
"product": {
"name": "3.18.2aSP",
"product_id": "CSAFPID-226160"
}
},
{
"category": "service_pack",
"name": "3.18.1iSP",
"product": {
"name": "3.18.1iSP",
"product_id": "CSAFPID-226354"
}
}
],
"category": "product_version",
"name": "3.18SP"
},
{
"branches": [
{
"category": "service_pack",
"name": "17.11.99SW",
"product": {
"name": "17.11.99SW",
"product_id": "CSAFPID-296860"
}
}
],
"category": "product_version",
"name": "17.11SW"
}
],
"category": "product_family",
"name": "Cisco IOS XE Software"
}
],
"category": "vendor",
"name": "Cisco"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2019-1738",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvb51688"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvc99155"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvc94856"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvf01501"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
]
},
"release_date": "2019-03-27T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
]
}
],
"title": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities"
},
{
"cve": "CVE-2019-1739",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvb51688"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvc99155"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvc94856"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvf01501"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
]
},
"release_date": "2019-03-27T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
]
}
],
"title": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities"
},
{
"cve": "CVE-2019-1740",
"ids": [
{
"system_name": "Cisco Bug ID",
"text": "CSCvb51688"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvc99155"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvc94856"
},
{
"system_name": "Cisco Bug ID",
"text": "CSCvf01501"
}
],
"notes": [
{
"category": "other",
"text": "Complete.",
"title": "Affected Product Comprehensiveness"
}
],
"product_status": {
"known_affected": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
]
},
"release_date": "2019-03-27T16:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"details": "Cisco has released software updates that address this vulnerability.",
"product_ids": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
],
"url": "https://software.cisco.com"
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 8.6,
"baseSeverity": "HIGH",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"products": [
"CSAFPID-210081",
"CSAFPID-212408",
"CSAFPID-212411",
"CSAFPID-212412",
"CSAFPID-213476",
"CSAFPID-213477",
"CSAFPID-213478",
"CSAFPID-213635",
"CSAFPID-213777",
"CSAFPID-213778",
"CSAFPID-213779",
"CSAFPID-213809",
"CSAFPID-213960",
"CSAFPID-214051",
"CSAFPID-217234",
"CSAFPID-217253",
"CSAFPID-217255",
"CSAFPID-217256",
"CSAFPID-217257",
"CSAFPID-217259",
"CSAFPID-217265",
"CSAFPID-217266",
"CSAFPID-217267",
"CSAFPID-217268",
"CSAFPID-217270",
"CSAFPID-217271",
"CSAFPID-217272",
"CSAFPID-217273",
"CSAFPID-217276",
"CSAFPID-220517",
"CSAFPID-220802",
"CSAFPID-220993",
"CSAFPID-222257",
"CSAFPID-222693",
"CSAFPID-222694",
"CSAFPID-222711",
"CSAFPID-222925",
"CSAFPID-222942",
"CSAFPID-223018",
"CSAFPID-223019",
"CSAFPID-223241",
"CSAFPID-223252",
"CSAFPID-224424",
"CSAFPID-224702",
"CSAFPID-225168",
"CSAFPID-225359",
"CSAFPID-225466",
"CSAFPID-225784",
"CSAFPID-226078",
"CSAFPID-226160",
"CSAFPID-226330",
"CSAFPID-226354",
"CSAFPID-227556",
"CSAFPID-228193",
"CSAFPID-231390",
"CSAFPID-296860",
"CSAFPID-200509",
"CSAFPID-204822",
"CSAFPID-204901",
"CSAFPID-205516",
"CSAFPID-209113",
"CSAFPID-209115",
"CSAFPID-209360",
"CSAFPID-209632",
"CSAFPID-209936",
"CSAFPID-210129",
"CSAFPID-211256",
"CSAFPID-211603",
"CSAFPID-211825",
"CSAFPID-211984",
"CSAFPID-212118",
"CSAFPID-212127",
"CSAFPID-212407",
"CSAFPID-212445",
"CSAFPID-212686",
"CSAFPID-213000",
"CSAFPID-213001",
"CSAFPID-213034",
"CSAFPID-213086",
"CSAFPID-213594",
"CSAFPID-213633",
"CSAFPID-213789",
"CSAFPID-213843",
"CSAFPID-213954",
"CSAFPID-214074",
"CSAFPID-214161",
"CSAFPID-214938",
"CSAFPID-216215",
"CSAFPID-216239",
"CSAFPID-216277",
"CSAFPID-216419",
"CSAFPID-216961",
"CSAFPID-216962",
"CSAFPID-217048",
"CSAFPID-218946",
"CSAFPID-218948",
"CSAFPID-218996",
"CSAFPID-218997",
"CSAFPID-220235",
"CSAFPID-220396",
"CSAFPID-220522",
"CSAFPID-220657",
"CSAFPID-220658",
"CSAFPID-221093",
"CSAFPID-222630",
"CSAFPID-222716",
"CSAFPID-222931",
"CSAFPID-222988",
"CSAFPID-222989",
"CSAFPID-223085",
"CSAFPID-223189",
"CSAFPID-224327",
"CSAFPID-224443",
"CSAFPID-225167",
"CSAFPID-225790",
"CSAFPID-226076",
"CSAFPID-226172",
"CSAFPID-227048",
"CSAFPID-227612",
"CSAFPID-227789",
"CSAFPID-228195",
"CSAFPID-228955",
"CSAFPID-228956",
"CSAFPID-230598",
"CSAFPID-230603",
"CSAFPID-230605",
"CSAFPID-230612",
"CSAFPID-230613",
"CSAFPID-230614",
"CSAFPID-230616",
"CSAFPID-230824",
"CSAFPID-230826",
"CSAFPID-230994",
"CSAFPID-230995",
"CSAFPID-231000",
"CSAFPID-231001",
"CSAFPID-231679",
"CSAFPID-231796",
"CSAFPID-232061",
"CSAFPID-232093",
"CSAFPID-232852",
"CSAFPID-234115",
"CSAFPID-236297",
"CSAFPID-254081",
"CSAFPID-262382",
"CSAFPID-275327",
"CSAFPID-277230",
"CSAFPID-277232",
"CSAFPID-277253",
"CSAFPID-278136",
"CSAFPID-279335",
"CSAFPID-279337",
"CSAFPID-280759",
"CSAFPID-282026",
"CSAFPID-283833",
"CSAFPID-284291",
"CSAFPID-284341",
"CSAFPID-284566",
"CSAFPID-284785",
"CSAFPID-286029",
"CSAFPID-286399",
"CSAFPID-286400",
"CSAFPID-286451",
"CSAFPID-286844",
"CSAFPID-286927",
"CSAFPID-286940",
"CSAFPID-289270",
"CSAFPID-289301",
"CSAFPID-289371",
"CSAFPID-290557",
"CSAFPID-290618"
]
}
],
"title": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities"
}
]
}
CNVD-2019-08718
Vulnerability from cnvd - Published: 2019-03-29
VLAI
Title
Cisco IOS和IOS XE输入验证漏洞(CNVD-2019-08718)
Description
Cisco IOS和IOS XE都是美国思科(Cisco)公司的一套为其网络设备开发的操作系统。
Cisco IOS和IOS XE中的Network-Based Application Recognition (NBAR)功能存在输入验证漏洞,该漏洞源于程序存在解析问题,远程攻击者可通过发送特制的DNS数据包利用该漏洞造成受影响的设备重新加载,导致拒绝服务。
Severity
高
Patch Name
Cisco IOS和IOS XE输入验证漏洞(CNVD-2019-08718)的补丁
Patch Description
Cisco IOS和IOS XE都是美国思科(Cisco)公司的一套为其网络设备开发的操作系统。
Cisco IOS和IOS XE中的Network-Based Application Recognition (NBAR)功能存在输入验证漏洞,该漏洞源于程序存在解析问题,远程攻击者可通过发送特制的DNS数据包利用该漏洞造成受影响的设备重新加载,导致拒绝服务。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
厂商已发布了漏洞修复程序,请及时关注更新: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar
Reference
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar
Impacted products
| Name | ['Cisco IOS XE', 'Cisco IOS'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2019-1740"
}
},
"description": "Cisco IOS\u548cIOS XE\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u4e3a\u5176\u7f51\u7edc\u8bbe\u5907\u5f00\u53d1\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\n\nCisco IOS\u548cIOS XE\u4e2d\u7684Network-Based Application Recognition (NBAR)\u529f\u80fd\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5b58\u5728\u89e3\u6790\u95ee\u9898\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684DNS\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u91cd\u65b0\u52a0\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
"discovererName": "Cisco",
"formalWay": "\u5382\u5546\u5df2\u53d1\u5e03\u4e86\u6f0f\u6d1e\u4fee\u590d\u7a0b\u5e8f\uff0c\u8bf7\u53ca\u65f6\u5173\u6ce8\u66f4\u65b0\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2019-08718",
"openTime": "2019-03-29",
"patchDescription": "Cisco IOS\u548cIOS XE\u90fd\u662f\u7f8e\u56fd\u601d\u79d1\uff08Cisco\uff09\u516c\u53f8\u7684\u4e00\u5957\u4e3a\u5176\u7f51\u7edc\u8bbe\u5907\u5f00\u53d1\u7684\u64cd\u4f5c\u7cfb\u7edf\u3002\r\n\r\nCisco IOS\u548cIOS XE\u4e2d\u7684Network-Based Application Recognition (NBAR)\u529f\u80fd\u5b58\u5728\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5b58\u5728\u89e3\u6790\u95ee\u9898\uff0c\u8fdc\u7a0b\u653b\u51fb\u8005\u53ef\u901a\u8fc7\u53d1\u9001\u7279\u5236\u7684DNS\u6570\u636e\u5305\u5229\u7528\u8be5\u6f0f\u6d1e\u9020\u6210\u53d7\u5f71\u54cd\u7684\u8bbe\u5907\u91cd\u65b0\u52a0\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Cisco IOS\u548cIOS XE\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\uff08CNVD-2019-08718\uff09\u7684\u8865\u4e01",
"products": {
"product": [
"Cisco IOS XE",
"Cisco IOS"
]
},
"referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar",
"serverity": "\u9ad8",
"submitTime": "2019-03-28",
"title": "Cisco IOS\u548cIOS XE\u8f93\u5165\u9a8c\u8bc1\u6f0f\u6d1e\uff08CNVD-2019-08718\uff09"
}
FKIE_CVE-2019-1740
Vulnerability from fkie_nvd - Published: 2019-03-28 00:29 - Updated: 2024-11-21 04:37
Severity
Summary
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.
References
| URL | Tags | ||
|---|---|---|---|
| psirt@cisco.com | http://www.securityfocus.com/bid/107597 | Third Party Advisory, VDB Entry | |
| psirt@cisco.com | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar | Patch, Vendor Advisory | |
| af854a3a-2127-422b-91ae-364da2661108 | http://www.securityfocus.com/bid/107597 | Third Party Advisory, VDB Entry | |
| af854a3a-2127-422b-91ae-364da2661108 | https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar | Patch, Vendor Advisory |
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| cisco | ios_xe | 3.2.0ja | |
| cisco | ios_xe | 3.16.0as | |
| cisco | ios_xe | 3.16.0bs | |
| cisco | ios_xe | 3.16.0cs | |
| cisco | ios_xe | 3.16.0s | |
| cisco | ios_xe | 3.16.1as | |
| cisco | ios_xe | 3.16.1s | |
| cisco | ios_xe | 3.16.2as | |
| cisco | ios_xe | 3.16.2bs | |
| cisco | ios_xe | 3.16.2s | |
| cisco | ios_xe | 3.16.3as | |
| cisco | ios_xe | 3.16.3s | |
| cisco | ios_xe | 3.16.4as | |
| cisco | ios_xe | 3.16.4bs | |
| cisco | ios_xe | 3.16.4cs | |
| cisco | ios_xe | 3.16.4ds | |
| cisco | ios_xe | 3.16.4es | |
| cisco | ios_xe | 3.16.4gs | |
| cisco | ios_xe | 3.16.4s | |
| cisco | ios_xe | 3.16.5as | |
| cisco | ios_xe | 3.16.5s | |
| cisco | ios_xe | 3.17.0s | |
| cisco | ios_xe | 3.17.1as | |
| cisco | ios_xe | 3.17.1s | |
| cisco | ios_xe | 3.17.2s | |
| cisco | ios_xe | 3.17.3s | |
| cisco | ios_xe | 3.17.4s | |
| cisco | ios_xe | 3.18.0as | |
| cisco | ios_xe | 3.18.0s | |
| cisco | ios_xe | 3.18.0sp | |
| cisco | ios_xe | 3.18.1asp | |
| cisco | ios_xe | 3.18.1bsp | |
| cisco | ios_xe | 3.18.1csp | |
| cisco | ios_xe | 3.18.1gsp | |
| cisco | ios_xe | 3.18.1hsp | |
| cisco | ios_xe | 3.18.1isp | |
| cisco | ios_xe | 3.18.1s | |
| cisco | ios_xe | 3.18.1sp | |
| cisco | ios_xe | 3.18.2asp | |
| cisco | ios_xe | 3.18.2s | |
| cisco | ios_xe | 3.18.2sp | |
| cisco | ios_xe | 3.18.3s | |
| cisco | ios_xe | 3.18.4s | |
| cisco | ios_xe | 16.2.1 | |
| cisco | ios_xe | 16.2.2 | |
| cisco | ios_xe | 16.3.1 | |
| cisco | ios_xe | 16.3.1a | |
| cisco | ios_xe | 16.3.2 | |
| cisco | ios_xe | 16.3.3 | |
| cisco | ios_xe | 16.3.4 | |
| cisco | ios_xe | 16.4.1 | |
| cisco | ios_xe | 16.4.2 | |
| cisco | ios_xe | 16.4.3 | |
| cisco | ios_xe | 16.5.1 | |
| cisco | ios_xe | 16.5.1a | |
| cisco | ios_xe | 16.5.1b | |
| cisco | ios_xe | 16.9.3s | |
| cisco | ios_xe | 16.9.4c | |
| cisco | ios | 15.3\(3\)jd | |
| cisco | ios | 15.3\(3\)jd2 | |
| cisco | ios | 15.3\(3\)jd3 | |
| cisco | ios | 15.3\(3\)jd4 | |
| cisco | ios | 15.3\(3\)jd5 | |
| cisco | ios | 15.3\(3\)jd6 | |
| cisco | ios | 15.3\(3\)jd7 | |
| cisco | ios | 15.3\(3\)jd8 | |
| cisco | ios | 15.3\(3\)jd9 | |
| cisco | ios | 15.3\(3\)jd11 | |
| cisco | ios | 15.3\(3\)jd12 | |
| cisco | ios | 15.3\(3\)jd13 | |
| cisco | ios | 15.3\(3\)jd14 | |
| cisco | ios | 15.3\(3\)je | |
| cisco | ios | 15.3\(3\)jf | |
| cisco | ios | 15.3\(3\)jf1 | |
| cisco | ios | 15.3\(3\)jf2 | |
| cisco | ios | 15.3\(3\)jf4 | |
| cisco | ios | 15.3\(3\)jf5 | |
| cisco | ios | 15.3\(3\)jg | |
| cisco | ios | 15.3\(3\)jg1 | |
| cisco | ios | 15.3\(3\)jh | |
| cisco | ios | 15.3\(3\)jk6 | |
| cisco | ios | 15.3\(3\)jnp | |
| cisco | ios | 15.3\(3\)jnp1 | |
| cisco | ios | 15.3\(3\)jnp3 | |
| cisco | ios | 15.3\(3\)jpb | |
| cisco | ios | 15.3\(3\)jpb1 | |
| cisco | ios | 15.3\(3\)jpc | |
| cisco | ios | 15.3\(3\)jpc1 | |
| cisco | ios | 15.3\(3\)jpc2 | |
| cisco | ios | 15.3\(3\)jpc3 | |
| cisco | ios | 15.3\(3\)jpc5 | |
| cisco | ios | 15.3\(3\)jpd | |
| cisco | ios | 15.5\(3\)m | |
| cisco | ios | 15.5\(3\)m0a | |
| cisco | ios | 15.5\(3\)m1 | |
| cisco | ios | 15.5\(3\)m2 | |
| cisco | ios | 15.5\(3\)m2a | |
| cisco | ios | 15.5\(3\)m3 | |
| cisco | ios | 15.5\(3\)m4 | |
| cisco | ios | 15.5\(3\)m4a | |
| cisco | ios | 15.5\(3\)m4b | |
| cisco | ios | 15.5\(3\)m4c | |
| cisco | ios | 15.5\(3\)m5 | |
| cisco | ios | 15.5\(3\)s | |
| cisco | ios | 15.5\(3\)s0a | |
| cisco | ios | 15.5\(3\)s1 | |
| cisco | ios | 15.5\(3\)s1a | |
| cisco | ios | 15.5\(3\)s2 | |
| cisco | ios | 15.5\(3\)s3 | |
| cisco | ios | 15.5\(3\)s4 | |
| cisco | ios | 15.5\(3\)s5 | |
| cisco | ios | 15.5\(3\)sn | |
| cisco | ios | 15.5\(3\)sn0a | |
| cisco | ios | 15.6\(1\)s | |
| cisco | ios | 15.6\(1\)s1 | |
| cisco | ios | 15.6\(1\)s2 | |
| cisco | ios | 15.6\(1\)s3 | |
| cisco | ios | 15.6\(1\)s4 | |
| cisco | ios | 15.6\(1\)sn | |
| cisco | ios | 15.6\(1\)sn1 | |
| cisco | ios | 15.6\(1\)sn2 | |
| cisco | ios | 15.6\(1\)sn3 | |
| cisco | ios | 15.6\(1\)t | |
| cisco | ios | 15.6\(1\)t0a | |
| cisco | ios | 15.6\(1\)t1 | |
| cisco | ios | 15.6\(1\)t2 | |
| cisco | ios | 15.6\(2\)s | |
| cisco | ios | 15.6\(2\)s1 | |
| cisco | ios | 15.6\(2\)s2 | |
| cisco | ios | 15.6\(2\)s3 | |
| cisco | ios | 15.6\(2\)s4 | |
| cisco | ios | 15.6\(2\)sn | |
| cisco | ios | 15.6\(2\)t | |
| cisco | ios | 15.6\(2\)t0a | |
| cisco | ios | 15.6\(2\)t1 | |
| cisco | ios | 15.6\(2\)t2 | |
| cisco | ios | 15.6\(3\)m | |
| cisco | ios | 15.6\(3\)m0a | |
| cisco | ios | 15.6\(3\)m1 | |
| cisco | ios | 15.6\(3\)m1a | |
| cisco | ios | 15.6\(3\)m1b | |
| cisco | ios | 15.6\(3\)sn | |
| cisco | ios | 15.6\(4\)sn | |
| cisco | ios | 15.6\(5\)sn | |
| cisco | ios | 15.6\(6\)sn | |
| cisco | ios | 15.6\(7\)sn | |
| cisco | ios | 15.6\(7\)sn1 | |
| cisco | ios | 15.6\(7\)sn2 | |
| cisco | ios | 15.6\(7\)sn3 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.2.0ja:*:*:*:*:*:*:*",
"matchCriteriaId": "52BC2A87-31EC-4E15-86E3-ECBEFA9E479A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.0as:*:*:*:*:*:*:*",
"matchCriteriaId": "97410577-A005-49B6-981C-535B3484E72F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.0bs:*:*:*:*:*:*:*",
"matchCriteriaId": "3420FB4D-8A6A-4B37-A4AE-7B35BEEEAF71",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.0cs:*:*:*:*:*:*:*",
"matchCriteriaId": "5568EABF-8F43-4A87-8DE4-A03E9065BE53",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.0s:*:*:*:*:*:*:*",
"matchCriteriaId": "A0E5BB91-B5E7-4961-87DC-26596E5EDED7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.1as:*:*:*:*:*:*:*",
"matchCriteriaId": "AC72AA6D-9E18-49F7-95CA-A4A5D7A60E4E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.1s:*:*:*:*:*:*:*",
"matchCriteriaId": "D3822447-EB80-4DF2-B7F2-471F55BA99C0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.2as:*:*:*:*:*:*:*",
"matchCriteriaId": "BA0B441A-3A09-4A58-8A40-D463003A50BC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.2bs:*:*:*:*:*:*:*",
"matchCriteriaId": "51E1A64A-204D-4567-A2DC-EFEB2AE62B54",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.2s:*:*:*:*:*:*:*",
"matchCriteriaId": "970FD986-6D0E-441C-9BF3-C66A25763A7A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.3as:*:*:*:*:*:*:*",
"matchCriteriaId": "7EEFD3AD-EFA2-4808-801E-B98E4C63AA76",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.3s:*:*:*:*:*:*:*",
"matchCriteriaId": "1826C997-6D5D-480E-A12E-3048B6C61216",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4as:*:*:*:*:*:*:*",
"matchCriteriaId": "5D136C95-F837-49AD-82B3-81C25F68D0EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4bs:*:*:*:*:*:*:*",
"matchCriteriaId": "C35B3F96-B342-4AFC-A511-7A735B961ECD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4cs:*:*:*:*:*:*:*",
"matchCriteriaId": "9E203E52-0A3A-4910-863D-05FEF537C9B8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4ds:*:*:*:*:*:*:*",
"matchCriteriaId": "DED2D791-4142-4B9E-8401-6B63357536B0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4es:*:*:*:*:*:*:*",
"matchCriteriaId": "4B6442B5-A87E-493B-98D5-F954B5A001BA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4gs:*:*:*:*:*:*:*",
"matchCriteriaId": "8794DA1D-9EE8-4139-B8E9-061A73CFD5F5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.4s:*:*:*:*:*:*:*",
"matchCriteriaId": "9FBEF4B2-EA12-445A-823E-E0E5343A405E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.5as:*:*:*:*:*:*:*",
"matchCriteriaId": "51EAC484-1C4F-4CA8-B8E1-6EE0E9497A4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.16.5s:*:*:*:*:*:*:*",
"matchCriteriaId": "844E7CEC-5CB6-47AE-95F7-75693347C08E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.17.0s:*:*:*:*:*:*:*",
"matchCriteriaId": "12793F39-13C4-4DBC-9B78-FE361BDDF89D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.17.1as:*:*:*:*:*:*:*",
"matchCriteriaId": "1AEF94C7-CEE6-4696-9F1D-549639A831C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.17.1s:*:*:*:*:*:*:*",
"matchCriteriaId": "876767C7-0196-4226-92B1-DDE851B53655",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.17.2s:*:*:*:*:*:*:*",
"matchCriteriaId": "0141D67B-632F-48ED-8837-4CC799616C57",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.17.3s:*:*:*:*:*:*:*",
"matchCriteriaId": "141FFB5E-EA72-4FC1-B87A-B5E2D5FCFE2A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.17.4s:*:*:*:*:*:*:*",
"matchCriteriaId": "FE444B39-D025-471B-835E-88671212ACAA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.0as:*:*:*:*:*:*:*",
"matchCriteriaId": "BE390091-D382-4436-BBB4-D4C33E4F6714",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.0s:*:*:*:*:*:*:*",
"matchCriteriaId": "EE81AA43-88D4-4EFC-B8F6-A41EFF437819",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.0sp:*:*:*:*:*:*:*",
"matchCriteriaId": "C18E6308-7A34-43E3-9AD8-5FB52B31ACB6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1asp:*:*:*:*:*:*:*",
"matchCriteriaId": "A667AEC6-57E3-4D67-A02E-F0BAEBCE16DD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1bsp:*:*:*:*:*:*:*",
"matchCriteriaId": "80EE163D-D9EC-46A1-826A-54F8F3A3FFBE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1csp:*:*:*:*:*:*:*",
"matchCriteriaId": "3CE4CFE4-C00F-4FAE-8FDF-F6C92E92838D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1gsp:*:*:*:*:*:*:*",
"matchCriteriaId": "CE3170E3-0BCC-4C5F-8E6C-5E91E8C4E7A8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1hsp:*:*:*:*:*:*:*",
"matchCriteriaId": "3CCDB353-DD15-4C91-AD2A-73649C012E08",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1isp:*:*:*:*:*:*:*",
"matchCriteriaId": "7D7DAAE1-BB3F-4FBA-A6ED-3BABC9196C1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1s:*:*:*:*:*:*:*",
"matchCriteriaId": "6BEBCBF7-D1CF-488F-BB3E-F864F901A96A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.1sp:*:*:*:*:*:*:*",
"matchCriteriaId": "06BBE88E-FEFB-4B90-91D1-4F053FA0EA47",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.2asp:*:*:*:*:*:*:*",
"matchCriteriaId": "0D43FA49-1F9D-4FD0-AF18-6E9AB6DF702F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.2s:*:*:*:*:*:*:*",
"matchCriteriaId": "BD8CCA19-1D1C-45C0-A1A0-CED5885AD580",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.2sp:*:*:*:*:*:*:*",
"matchCriteriaId": "014224BF-926E-470C-A133-84036D8AD533",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.3s:*:*:*:*:*:*:*",
"matchCriteriaId": "4063CCF8-19BE-4411-B71B-147BB146700B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:3.18.4s:*:*:*:*:*:*:*",
"matchCriteriaId": "186ADB50-A4D4-4B32-884D-3195E7770346",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.2.1:*:*:*:*:*:*:*",
"matchCriteriaId": "89526731-B712-43D3-B451-D7FC503D2D65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.2.2:*:*:*:*:*:*:*",
"matchCriteriaId": "302933FE-4B6A-48A3-97F0-4B943251B717",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "296636F1-9242-429B-8472-90352C056106",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.3.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "77993343-0394-413F-ABF9-C1215E9AD800",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "283971DD-DD58-4A76-AC2A-F316534ED416",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.3.3:*:*:*:*:*:*:*",
"matchCriteriaId": "A8F324A5-4830-482E-A684-AB3B6594CEAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.3.4:*:*:*:*:*:*:*",
"matchCriteriaId": "E8120196-8648-49D0-8262-CD4C9C90C37A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "77E8AF15-AB46-4EAB-8872-8C55E8601599",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "957318BE-55D4-4585-AA52-C813301D01C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.4.3:*:*:*:*:*:*:*",
"matchCriteriaId": "8F11B703-8A0F-47ED-AA70-951FF78B94A4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.5.1:*:*:*:*:*:*:*",
"matchCriteriaId": "FE7B2557-821D-4E05-B5C3-67192573D97D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.5.1a:*:*:*:*:*:*:*",
"matchCriteriaId": "5EE6EC32-51E4-43A3-BFB9-A0D842D08E87",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.5.1b:*:*:*:*:*:*:*",
"matchCriteriaId": "187F699A-AF2F-42B0-B855-27413140C384",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.9.3s:*:*:*:*:*:*:*",
"matchCriteriaId": "41D55481-C80E-4400-9C3D-9F6B1F7F13CE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios_xe:16.9.4c:*:*:*:*:*:*:*",
"matchCriteriaId": "D07F9539-CFBE-46F7-9F5E-93A68169797D",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd:*:*:*:*:*:*:*",
"matchCriteriaId": "34D7D48C-9FA1-45DB-B206-437E8ECBF53D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd2:*:*:*:*:*:*:*",
"matchCriteriaId": "3626B216-43E8-4E60-96E5-7CAA0CB67F65",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd3:*:*:*:*:*:*:*",
"matchCriteriaId": "D9B59D8B-E71A-4671-BA0B-00E56498E280",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd4:*:*:*:*:*:*:*",
"matchCriteriaId": "956C0089-E5AE-4289-B6D7-A8AB3C39AAA8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd5:*:*:*:*:*:*:*",
"matchCriteriaId": "333468BC-41F0-46ED-9561-D7D2CE6AC267",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd6:*:*:*:*:*:*:*",
"matchCriteriaId": "09DBAA17-61D7-4EE4-A70D-A7200DF36C58",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd7:*:*:*:*:*:*:*",
"matchCriteriaId": "DF17EADC-5812-47FD-A243-287837CEC1E6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd8:*:*:*:*:*:*:*",
"matchCriteriaId": "5733BCBA-B3CE-4B18-9F7B-51CE17AAEF89",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd9:*:*:*:*:*:*:*",
"matchCriteriaId": "BE8CF99C-B097-4964-B07C-FBB28EB37681",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd11:*:*:*:*:*:*:*",
"matchCriteriaId": "79DC64FF-E6F4-4FEE-87A2-14DF0DA55B23",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd12:*:*:*:*:*:*:*",
"matchCriteriaId": "CBA4B81F-7FCA-4666-8602-F6C77A4673E8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd13:*:*:*:*:*:*:*",
"matchCriteriaId": "E2403659-B7AD-40CE-AF88-FE2BEF0929E4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd14:*:*:*:*:*:*:*",
"matchCriteriaId": "7D1F53B1-E9FA-4480-8314-C531073B25CF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)je:*:*:*:*:*:*:*",
"matchCriteriaId": "2955A319-04AC-4D0C-80B7-0C90503908C3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf:*:*:*:*:*:*:*",
"matchCriteriaId": "B0EF13B6-A743-41D1-BB31-F17C3586C8AF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf1:*:*:*:*:*:*:*",
"matchCriteriaId": "0B4F7A75-1D0B-4F55-868C-99DBB67AE1AB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf2:*:*:*:*:*:*:*",
"matchCriteriaId": "37875B18-434B-4218-BAAF-2B593E188180",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf4:*:*:*:*:*:*:*",
"matchCriteriaId": "26BAC234-D00C-4407-A1FE-E45A14D1BDAB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf5:*:*:*:*:*:*:*",
"matchCriteriaId": "C42E2869-F179-49B7-A4E8-0F4E8EA953CB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg:*:*:*:*:*:*:*",
"matchCriteriaId": "746D8C22-4A3E-4EDB-96A1-923EFF2FD5C2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg1:*:*:*:*:*:*:*",
"matchCriteriaId": "8BB02DEB-81D4-4A05-BDD5-3B8BC7184159",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jh:*:*:*:*:*:*:*",
"matchCriteriaId": "B18C3383-28B0-435E-AF08-9739DADAE4E2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk6:*:*:*:*:*:*:*",
"matchCriteriaId": "4E18F8C6-E592-4507-8B93-E9AEA5C12CC1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp:*:*:*:*:*:*:*",
"matchCriteriaId": "F45D0EFD-784A-4CDB-8FDB-41F6869B4735",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp1:*:*:*:*:*:*:*",
"matchCriteriaId": "942CC01D-ED6E-4731-A61B-75CDF219F760",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp3:*:*:*:*:*:*:*",
"matchCriteriaId": "59CA018E-5160-40AE-953D-9559F23D2EAF",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb:*:*:*:*:*:*:*",
"matchCriteriaId": "BBA595EF-8718-4477-8EEC-EA948C14F091",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb1:*:*:*:*:*:*:*",
"matchCriteriaId": "4CDCADB1-EA01-41AF-9D96-A6EDE42D7A9C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc:*:*:*:*:*:*:*",
"matchCriteriaId": "13763901-2D7B-485D-A957-E30587BCEB88",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc1:*:*:*:*:*:*:*",
"matchCriteriaId": "8B213166-77E2-4E13-8769-FA8AF6EEC33A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc2:*:*:*:*:*:*:*",
"matchCriteriaId": "7A3C0371-223A-433C-B8A3-C24A499EB82F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc3:*:*:*:*:*:*:*",
"matchCriteriaId": "A066A001-830B-4407-A5CD-AB99059C190E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc5:*:*:*:*:*:*:*",
"matchCriteriaId": "83B45095-526D-4BC5-A16B-6B5741F07FD8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpd:*:*:*:*:*:*:*",
"matchCriteriaId": "C4A9F7DF-BB18-46FC-B471-3FC41F4CCD01",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m:*:*:*:*:*:*:*",
"matchCriteriaId": "716EC9AA-0569-4FA7-A244-1A14FA15C5AD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m0a:*:*:*:*:*:*:*",
"matchCriteriaId": "39166A66-859D-43A7-9947-3F3C32FBFAAE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m1:*:*:*:*:*:*:*",
"matchCriteriaId": "097D1950-6159-45A2-8653-D3F90044D0C8",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m2:*:*:*:*:*:*:*",
"matchCriteriaId": "F421AC3C-B0BC-4177-ACDB-87792C1636EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m2a:*:*:*:*:*:*:*",
"matchCriteriaId": "EA965B88-3464-4320-B9C4-594C49C9C0F6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m3:*:*:*:*:*:*:*",
"matchCriteriaId": "09CD336D-1110-4B0C-B8D4-7C96293CBADE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4:*:*:*:*:*:*:*",
"matchCriteriaId": "47C580D9-A2EC-4CBB-87F5-1F5CBA23F73F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4a:*:*:*:*:*:*:*",
"matchCriteriaId": "3C427BA8-3A8C-4934-997B-6DDF9CEB96AE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4b:*:*:*:*:*:*:*",
"matchCriteriaId": "90950C85-D631-4F60-AB3E-3ED1D74D56B9",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4c:*:*:*:*:*:*:*",
"matchCriteriaId": "CD79CA0D-7D90-4955-969A-C25873B0B9D3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m5:*:*:*:*:*:*:*",
"matchCriteriaId": "C7809674-4738-463E-B522-FC6C419E2A09",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s:*:*:*:*:*:*:*",
"matchCriteriaId": "1194A7BD-CB51-42CD-96E6-9ACF126DD8CA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s0a:*:*:*:*:*:*:*",
"matchCriteriaId": "CB52603C-CED4-4330-BB53-DDDFEA83882A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s1:*:*:*:*:*:*:*",
"matchCriteriaId": "F40A87C1-5EDB-4B50-84CF-729F5037E870",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s1a:*:*:*:*:*:*:*",
"matchCriteriaId": "E3BFDBE4-7AD9-418F-8DA5-F97BB37E46BD",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s2:*:*:*:*:*:*:*",
"matchCriteriaId": "42C9B84C-F9DC-4F9E-82F2-04004D539C36",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s3:*:*:*:*:*:*:*",
"matchCriteriaId": "5E246B9E-F93F-4BB2-9BA4-438FCC4A711B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s4:*:*:*:*:*:*:*",
"matchCriteriaId": "DE884ADE-FD51-4F10-89A8-D871E7407C83",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s5:*:*:*:*:*:*:*",
"matchCriteriaId": "B00BF54E-CBFB-4ECD-9EDF-0A8331AF2BE6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "C84498B4-7002-44D1-B2B7-B43F3081D258",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.5\\(3\\)sn0a:*:*:*:*:*:*:*",
"matchCriteriaId": "E10003D7-8501-4A8C-AED1-A9F9B79D0666",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s:*:*:*:*:*:*:*",
"matchCriteriaId": "0F61B07A-7933-476F-951A-AD0019D2443D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s1:*:*:*:*:*:*:*",
"matchCriteriaId": "41939712-5075-4924-ABF2-467430B37197",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s2:*:*:*:*:*:*:*",
"matchCriteriaId": "E7CBC8C7-E3B2-4659-9B47-C0F16817F46A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s3:*:*:*:*:*:*:*",
"matchCriteriaId": "3DC59C3E-A2A4-4A1A-B561-E411D7DE85E7",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s4:*:*:*:*:*:*:*",
"matchCriteriaId": "945363EE-FE7A-44ED-A4A0-942A1F9B2702",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "F1CEA598-B4E5-44E6-AA1A-79DC4FE3B62E",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn1:*:*:*:*:*:*:*",
"matchCriteriaId": "2481A9F2-2C99-4A78-B8B4-0D073A6CFED5",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn2:*:*:*:*:*:*:*",
"matchCriteriaId": "667CB7FD-280B-42D6-9E45-EA04A1DC7701",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn3:*:*:*:*:*:*:*",
"matchCriteriaId": "65DD79B6-A44A-447F-A69D-C7C4193F5C1C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t:*:*:*:*:*:*:*",
"matchCriteriaId": "5E25B3DC-B9A7-4DFC-8566-3F790F460DDC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t0a:*:*:*:*:*:*:*",
"matchCriteriaId": "679DCA8C-F64B-4716-BCC9-9C461A89CB29",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t1:*:*:*:*:*:*:*",
"matchCriteriaId": "EF662E36-0831-4892-850F-844B0E0B54DA",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t2:*:*:*:*:*:*:*",
"matchCriteriaId": "1E71F49D-E405-4AB4-9188-DA7B338DFD7B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s:*:*:*:*:*:*:*",
"matchCriteriaId": "700D0D31-138B-4F9A-8C76-3AF8B9D2C59C",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s1:*:*:*:*:*:*:*",
"matchCriteriaId": "B843CEE5-4D53-414D-95C7-4BA515818E87",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s2:*:*:*:*:*:*:*",
"matchCriteriaId": "1BB5DABC-4DAF-4696-A8AE-D4B6B188B9EB",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s3:*:*:*:*:*:*:*",
"matchCriteriaId": "72480900-6E08-425F-965D-143B348E374A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s4:*:*:*:*:*:*:*",
"matchCriteriaId": "1EBA0926-E790-4B1C-A549-5B7D2F040E5A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "12D439A6-E8A8-4389-A7C8-2F4BCB7C3854",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t:*:*:*:*:*:*:*",
"matchCriteriaId": "09578DDF-5D13-47C1-9BD1-A1A8B9B0C87D",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t0a:*:*:*:*:*:*:*",
"matchCriteriaId": "6DDCF08B-3A61-4B3D-BF35-ABB5F11EA7E3",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t1:*:*:*:*:*:*:*",
"matchCriteriaId": "5BBF8B70-DFBE-4F6E-83F0-171F03E97606",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t2:*:*:*:*:*:*:*",
"matchCriteriaId": "CA55D660-66C6-4278-8C27-25DB2712CC1A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m:*:*:*:*:*:*:*",
"matchCriteriaId": "8320F23D-F6BE-405B-B645-1CEB984E8267",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m0a:*:*:*:*:*:*:*",
"matchCriteriaId": "4CE2670E-8C17-448D-A5BD-5A4FBCAEC35A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m1:*:*:*:*:*:*:*",
"matchCriteriaId": "C7C5C705-6A8C-4834-9D24-CFE26A232C15",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m1a:*:*:*:*:*:*:*",
"matchCriteriaId": "691BA27E-77AB-4A30-916D-3BB916B05298",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m1b:*:*:*:*:*:*:*",
"matchCriteriaId": "CC270E40-CABA-44B4-B4DD-E9C47A97770B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(3\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "466F2336-03D9-4842-BC3D-861749756B9F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(4\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "494F7651-927A-418D-B01A-1C30BFE28560",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(5\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "E9ACFB65-C99B-4402-A8E5-914533FF3F2F",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(6\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "06A1672C-9156-48BB-A535-26E6854E70D2",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn:*:*:*:*:*:*:*",
"matchCriteriaId": "F805324A-1593-4B48-B597-CF870D35944B",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn1:*:*:*:*:*:*:*",
"matchCriteriaId": "C78D1111-D91D-4E43-BC47-86EB37AACF75",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn2:*:*:*:*:*:*:*",
"matchCriteriaId": "B949D73E-0ED4-40CA-801E-F0BEE22157B6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn3:*:*:*:*:*:*:*",
"matchCriteriaId": "B39EE211-3A5C-4359-BD61-CF26ED3FC15F",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition."
},
{
"lang": "es",
"value": "Una vulnerabilidad en la funcionalidad NBAR (Network-Based Application Recognition) de los softwares Cisco IOS y Cisco IOS XE podr\u00eda permitir que un atacante remoto no autenticado provoque que el dispositivo afectado se recargue. Esta vulnerabilidad se debe a un problema de an\u00e1lisis en los paquetes DNS. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de paquetes DNS manipulados a trav\u00e9s de routers que ejecutan una versi\u00f3n afectada y tienen NBAR habilitado. Si se explota con \u00e9xito, podr\u00eda permitir que el atacante consiga que el dispositivo afectado se reinicie, provocando una denegaci\u00f3n de servicio (DoS)."
}
],
"id": "CVE-2019-1740",
"lastModified": "2024-11-21T04:37:15.070",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV30": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
"exploitabilityScore": 3.9,
"impactScore": 4.0,
"source": "psirt@cisco.com",
"type": "Secondary"
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 4.0,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2019-03-28T00:29:00.373",
"references": [
{
"source": "psirt@cisco.com",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107597"
},
{
"source": "psirt@cisco.com",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107597"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
}
],
"sourceIdentifier": "psirt@cisco.com",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "psirt@cisco.com",
"type": "Secondary"
},
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-454M-CF77-VMJ9
Vulnerability from github – Published: 2022-05-13 01:03 – Updated: 2022-05-13 01:03
VLAI
Details
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.
Severity
8.6 (High)
{
"affected": [],
"aliases": [
"CVE-2019-1740"
],
"database_specific": {
"cwe_ids": [
"CWE-20"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2019-03-28T00:29:00Z",
"severity": "HIGH"
},
"details": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.",
"id": "GHSA-454m-cf77-vmj9",
"modified": "2022-05-13T01:03:08Z",
"published": "2022-05-13T01:03:08Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2019-1740"
},
{
"type": "WEB",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/107597"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"type": "CVSS_V3"
}
]
}
GSD-2019-1740
Vulnerability from gsd - Updated: 2023-12-13 01:23Details
A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2019-1740",
"description": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.",
"id": "GSD-2019-1740"
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2019-1740"
],
"details": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.",
"id": "GSD-2019-1740",
"modified": "2023-12-13T01:23:51.478063Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"DATE_PUBLIC": "2019-03-27T16:00:00-0700",
"ID": "CVE-2019-1740",
"STATE": "PUBLIC",
"TITLE": "Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cisco IOS and Cisco IOS-XE Software",
"version": {
"version_data": [
{
"version_affected": "=",
"version_value": "3.16.0S"
},
{
"version_affected": "=",
"version_value": "3.16.1S"
},
{
"version_affected": "=",
"version_value": "3.16.0aS"
},
{
"version_affected": "=",
"version_value": "3.16.1aS"
},
{
"version_affected": "=",
"version_value": "3.16.2S"
},
{
"version_affected": "=",
"version_value": "3.16.2aS"
},
{
"version_affected": "=",
"version_value": "3.16.0bS"
},
{
"version_affected": "=",
"version_value": "3.16.0cS"
},
{
"version_affected": "=",
"version_value": "3.16.3S"
},
{
"version_affected": "=",
"version_value": "3.16.2bS"
},
{
"version_affected": "=",
"version_value": "3.16.3aS"
},
{
"version_affected": "=",
"version_value": "3.16.4S"
},
{
"version_affected": "=",
"version_value": "3.16.4aS"
},
{
"version_affected": "=",
"version_value": "3.16.4bS"
},
{
"version_affected": "=",
"version_value": "3.16.4gS"
},
{
"version_affected": "=",
"version_value": "3.16.5S"
},
{
"version_affected": "=",
"version_value": "3.16.4cS"
},
{
"version_affected": "=",
"version_value": "3.16.4dS"
},
{
"version_affected": "=",
"version_value": "3.16.4eS"
},
{
"version_affected": "=",
"version_value": "3.16.5aS"
},
{
"version_affected": "=",
"version_value": "3.17.0S"
},
{
"version_affected": "=",
"version_value": "3.17.1S"
},
{
"version_affected": "=",
"version_value": "3.17.2S"
},
{
"version_affected": "=",
"version_value": "3.17.1aS"
},
{
"version_affected": "=",
"version_value": "3.17.3S"
},
{
"version_affected": "=",
"version_value": "3.17.4S"
},
{
"version_affected": "=",
"version_value": "3.2.0JA"
},
{
"version_affected": "=",
"version_value": "16.2.1"
},
{
"version_affected": "=",
"version_value": "16.2.2"
},
{
"version_affected": "=",
"version_value": "16.3.1"
},
{
"version_affected": "=",
"version_value": "16.3.2"
},
{
"version_affected": "=",
"version_value": "16.3.3"
},
{
"version_affected": "=",
"version_value": "16.3.1a"
},
{
"version_affected": "=",
"version_value": "16.3.4"
},
{
"version_affected": "=",
"version_value": "16.4.1"
},
{
"version_affected": "=",
"version_value": "16.4.2"
},
{
"version_affected": "=",
"version_value": "16.4.3"
},
{
"version_affected": "=",
"version_value": "16.5.1"
},
{
"version_affected": "=",
"version_value": "16.5.1a"
},
{
"version_affected": "=",
"version_value": "16.5.1b"
},
{
"version_affected": "=",
"version_value": "3.18.0aS"
},
{
"version_affected": "=",
"version_value": "3.18.0S"
},
{
"version_affected": "=",
"version_value": "3.18.1S"
},
{
"version_affected": "=",
"version_value": "3.18.2S"
},
{
"version_affected": "=",
"version_value": "3.18.3S"
},
{
"version_affected": "=",
"version_value": "3.18.4S"
},
{
"version_affected": "=",
"version_value": "3.18.0SP"
},
{
"version_affected": "=",
"version_value": "3.18.1SP"
},
{
"version_affected": "=",
"version_value": "3.18.1aSP"
},
{
"version_affected": "=",
"version_value": "3.18.1gSP"
},
{
"version_affected": "=",
"version_value": "3.18.1bSP"
},
{
"version_affected": "=",
"version_value": "3.18.1cSP"
},
{
"version_affected": "=",
"version_value": "3.18.2SP"
},
{
"version_affected": "=",
"version_value": "3.18.1hSP"
},
{
"version_affected": "=",
"version_value": "3.18.2aSP"
},
{
"version_affected": "=",
"version_value": "3.18.1iSP"
}
]
}
}
]
},
"vendor_name": "Cisco"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition."
}
]
},
"exploit": [
{
"lang": "eng",
"value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory. "
}
],
"impact": {
"cvss": {
"baseScore": "8.6",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H ",
"version": "3.0"
}
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"refsource": "CISCO",
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"name": "107597",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/107597"
}
]
},
"source": {
"advisory": "cisco-sa-20190327-nbar",
"defect": [
[
"CSCvb51688",
"CSCvc94856",
"CSCvc99155",
"CSCvf01501"
]
],
"discovery": "INTERNAL"
}
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.2.0ja:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.0as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.0bs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.0cs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.0s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.1as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.2as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.2bs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.2s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.3as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.3s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4bs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4cs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4ds:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4es:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4gs:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.4s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.5as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.16.5s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.17.0s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.17.1as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.17.1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.17.2s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.17.3s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.17.4s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.0as:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.0s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.0sp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1asp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1bsp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1csp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1gsp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1hsp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1isp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.1sp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.2asp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.2s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.2sp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.3s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:3.18.4s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.2.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.2.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.3.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.3.1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.3.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.3.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.3.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.4.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.4.3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.5.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.5.1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.5.1b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.9.3s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:16.9.4c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd8:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd9:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd11:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd12:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd13:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jd14:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)je:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jf5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jg1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jh:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jk6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jnp3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpb1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpc5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.3\\(3\\)jpd:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m2a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m4c:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)m5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)s5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.5\\(3\\)sn0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)s4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)sn3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(1\\)t2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)s4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(2\\)t2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m0a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m1a:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(3\\)m1b:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(3\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(4\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(5\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(6\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:15.6\\(7\\)sn3:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "psirt@cisco.com",
"ID": "CVE-2019-1740"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-20"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20190327 Cisco IOS and IOS XE Software Network-Based Application Recognition Denial of Service Vulnerabilities",
"refsource": "CISCO",
"tags": [
"Patch",
"Vendor Advisory"
],
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"name": "107597",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/107597"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 4.0
}
},
"lastModifiedDate": "2022-03-18T19:40Z",
"publishedDate": "2019-03-28T00:29Z"
}
}
}
VAR-201903-0597
Vulnerability from variot - Updated: 2024-11-23 21:52A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. This issue is being tracked by Cisco Bug IDs CSCvb51688, CSCvc94856, CSCvc99155, CSCvf01501
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201903-0597",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.5.1b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)t1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.1as"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(7\\)sn1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4as"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.3s"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.1s"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.2sp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1sp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.4.1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.5.1a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4s"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.4s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(3\\)m1a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.3.1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.4.2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd7"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.0cs"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4bs"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4cs"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd11"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(3\\)m1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnp1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)sn1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1asp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.3s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)t0a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.5as"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(7\\)sn"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.2.2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.0sp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.17.2s"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1gsp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4es"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.4.3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)sn0a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)s4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)sn3"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.3.2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.3.1a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.5s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd12"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1csp"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.3as"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(3\\)m0a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.0s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)t2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd8"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpd"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd13"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jnp3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m4c"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s1a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)s"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.9.3s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)s1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.0s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jk6"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.17.4s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpb"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd14"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(3\\)m1b"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m5"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)t1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m4a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jg"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(3\\)m"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.0bs"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.9.4c"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)t2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)t"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.2as"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jg1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1hsp"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)s4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(4\\)sn"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.2asp"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.0as"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m0a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(5\\)sn"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.3.4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.0as"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.2.0ja"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4ds"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd9"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jf4"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)s3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)sn"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)sn2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.17.1s"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.17.1as"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jh"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s0a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(3\\)sn"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)s2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)je"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(7\\)sn3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpb1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.5.1"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)t"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(6\\)sn"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.2s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)s2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1bsp"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(7\\)sn2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m4b"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)s2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)s3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)s1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.2.1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.17.3s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(2\\)sn"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m4"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.2bs"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "16.3.3"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.17.0s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.4gs"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)m2a"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.5\\(3\\)sn"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6\\(1\\)t0a"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.16.2s"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jpc2"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "15.3\\(3\\)jd2"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "3.18.1isp"
},
{
"model": "ios",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ios xe",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ios xe",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "16.6.1"
},
{
"model": "ios xe",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "16.5"
},
{
"model": "ios 15.5 s3.8",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "ios 15.3 s4.1",
"scope": null,
"trust": 0.3,
"vendor": "cisco",
"version": null
},
{
"model": "asr series routers",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "10000"
}
],
"sources": [
{
"db": "BID",
"id": "107597"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/o:cisco:ios",
"vulnerable": true
},
{
"cpe22Uri": "cpe:/o:cisco:ios_xe",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerabilities that are described in this advisory.",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
}
],
"trust": 0.6
},
"cve": "CVE-2019-1740",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CVE-2019-1740",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 1.8,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-149642",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"id": "CVE-2019-1740",
"impactScore": 4.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "ykramarz@cisco.com",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"id": "CVE-2019-1740",
"impactScore": 4.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 7.5,
"baseSeverity": "High",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2019-1740",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2019-1740",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "ykramarz@cisco.com",
"id": "CVE-2019-1740",
"trust": 1.0,
"value": "HIGH"
},
{
"author": "NVD",
"id": "CVE-2019-1740",
"trust": 0.8,
"value": "High"
},
{
"author": "CNNVD",
"id": "CNNVD-201903-1105",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-149642",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-149642"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability are due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition. \nThis issue is being tracked by Cisco Bug IDs CSCvb51688, CSCvc94856, CSCvc99155, CSCvf01501",
"sources": [
{
"db": "NVD",
"id": "CVE-2019-1740"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "BID",
"id": "107597"
},
{
"db": "VULHUB",
"id": "VHN-149642"
}
],
"trust": 1.98
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2019-1740",
"trust": 2.8
},
{
"db": "BID",
"id": "107597",
"trust": 2.0
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201903-1105",
"trust": 0.7
},
{
"db": "NSFOCUS",
"id": "43060",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-149642",
"trust": 0.1
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-149642"
},
{
"db": "BID",
"id": "107597"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"id": "VAR-201903-0597",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "VULHUB",
"id": "VHN-149642"
}
],
"trust": 0.52697302
},
"last_update_date": "2024-11-23T21:52:27.255000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20190327-nbar",
"trust": 0.8,
"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar"
},
{
"title": "Cisco IOS and IOS XE Enter the fix for the verification vulnerability",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=90520"
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-20",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-149642"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.3,
"url": "http://www.securityfocus.com/bid/107597"
},
{
"trust": 2.0,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190327-nbar"
},
{
"trust": 1.4,
"url": "https://nvd.nist.gov/vuln/detail/cve-2019-1740"
},
{
"trust": 0.8,
"url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1740"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/43060"
},
{
"trust": 0.6,
"url": "https://vigilance.fr/vulnerability/cisco-ios-ios-xe-multiple-vulnerabilities-28888"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-149642"
},
{
"db": "BID",
"id": "107597"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "VULHUB",
"id": "VHN-149642"
},
{
"db": "BID",
"id": "107597"
},
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
},
{
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-03-28T00:00:00",
"db": "VULHUB",
"id": "VHN-149642"
},
{
"date": "2019-03-27T00:00:00",
"db": "BID",
"id": "107597"
},
{
"date": "2019-05-09T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"date": "2019-03-27T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201903-1105"
},
{
"date": "2019-03-28T00:29:00.373000",
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2019-10-09T00:00:00",
"db": "VULHUB",
"id": "VHN-149642"
},
{
"date": "2019-03-27T00:00:00",
"db": "BID",
"id": "107597"
},
{
"date": "2019-05-09T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2019-003082"
},
{
"date": "2022-03-21T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201903-1105"
},
{
"date": "2024-11-21T04:37:15.070000",
"db": "NVD",
"id": "CVE-2019-1740"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco IOS and IOS XE Software input validation vulnerability",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2019-003082"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "input validation error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201903-1105"
}
],
"trust": 0.6
}
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…