Strix
26.1K

CVE-2019-12700

MEDIUMCVSS 6.5/10EPSS 1.88%

Last modified

CVE-2019-12700 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. EPSS estimates a 1.88% chance of exploitation in the next 30 days.

Description

A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. An attacker could exploit this vulnerability by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins. A successful exploit could allow the attacker to exhaust system resources and cause the device to reload, resulting in a DoS condition. To exploit this vulnerability, the attacker needs valid user credentials on the system.

Metrics

CVSS 3.1
6.5/10

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS Probability
1.88%

76.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoFirepower 9300 Firmwarer114
CiscoFirepower 9300 Firmwarer241
CiscoFirepower Extensible Operating System<= 2.2
CiscoFirepower Extensible Operating System>= 2.3, < 2.3.1.155
CiscoFirepower Extensible Operating System>= 2.4, < 2.6.1.131
CiscoFirepower Threat Defense<= 6.1.0
CiscoFirepower Threat Defense>= 6.2.0, < 6.2.3.14
CiscoSecure Firewall Management Center<= 6.1.0
CiscoSecure Firewall Management Center>= 6.2.0, < 6.2.3.14
CiscoFirepower Threat Defense>= 6.2.0, < 6.2.2.5
CiscoFirepower Threat Defense>= 6.2.3, < 6.2.3.7
CiscoSecure Firewall Management Center>= 6.2.3, < 6.2.3.7

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-12700?
A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. An attacker could exploit this vulnerability by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins. A successful exploit could allow the attacker to exhaust system resources and cause the device to reload, resulting in a DoS condition. To exploit this vulnerability, the attacker needs valid user credentials on the system.
How severe is CVE-2019-12700?
CVE-2019-12700 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 1.88% probability of exploitation in the next 30 days.
How do I fix CVE-2019-12700?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-12700?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST