CVE-2019-1669
Last modified
CVE-2019-1669 is a vulnerability of currently unknown severity. A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies or cause a denial of service (DoS) condition. The vulnerability exists because the affected software improperly manages system memory resources when inspecting traffic. EPSS estimates a 1.25% chance of exploitation in the next 30 days.
Description
A vulnerability in the data acquisition (DAQ) component of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies or cause a denial of service (DoS) condition. The vulnerability exists because the affected software improperly manages system memory resources when inspecting traffic. An attacker could exploit this vulnerability by generating specific traffic patterns for the software to inspect. A successful exploit could allow the attacker to exhaust system memory resources used for traffic inspection. Depending on the configuration, the FTD Software could fail open and cease to inspect traffic or fail closed and result in a DoS condition. This vulnerability may require manual intervention to restore the software.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Firepower Threat Defense | 6.3.0 |
| Cisco | Firepower Threat Defense | 6.4.0 |
References
- http://www.securityfocus.com/bid/106721Third Party Advisory
- http://www.securityfocus.com/bid/106721Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2019-1669?
How severe is CVE-2019-1669?
How do I fix CVE-2019-1669?
Are you affected by CVE-2019-1669?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST