CVE-2019-1739

Name: CVE-2019-1739
Creator: NVD / NIST
Published: 2019-03-28T00:29:00.34+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 7.5/10EPSS 2.52%

Last modified Jun 17, 2026

CVE-2019-1739 is a high-severity vulnerability rated 7.5/10 on the CVSS scale. A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a parsing issue on DNS packets. EPSS estimates a 2.52% chance of exploitation in the next 30 days.

Description

A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a parsing issue on DNS packets. An attacker could exploit this vulnerability by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.

Metrics

CVSS 3.1

7.5/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability

2.52%

82.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Cisco	Ios	15.1\(2\)sg8a
Cisco	Ios	15.1\(3\)svg3d
Cisco	Ios	15.1\(3\)svi1b
Cisco	Ios	15.1\(3\)svk4b
Cisco	Ios	15.1\(3\)svk4c
Cisco	Ios	15.1\(3\)svm3
Cisco	Ios	15.1\(3\)svn2
Cisco	Ios	15.1\(3\)svo1
Cisco	Ios	15.1\(3\)svo2
Cisco	Ios	15.1\(3\)svo3
Cisco	Ios	15.1\(3\)svo4
Cisco	Ios	15.1\(3\)svp1
Cisco	Ios	15.1\(3\)svp2
Cisco	Ios	15.1\(4\)m12c
Cisco	Ios	15.2\(3\)ea1
Cisco	Ios	15.2\(4a\)ea5
Cisco	Ios	15.3\(3\)ja1n
Cisco	Ios	15.3\(3\)jd
Cisco	Ios	15.3\(3\)jd2
Cisco	Ios	15.3\(3\)jd3
Cisco	Ios	15.3\(3\)jd4
Cisco	Ios	15.3\(3\)jd5
Cisco	Ios	15.3\(3\)jd6
Cisco	Ios	15.3\(3\)jd7
Cisco	Ios	15.3\(3\)jd8
Cisco	Ios	15.3\(3\)jd9
Cisco	Ios	15.3\(3\)jd11
Cisco	Ios	15.3\(3\)jd12
Cisco	Ios	15.3\(3\)jd13
Cisco	Ios	15.3\(3\)jd14
Cisco	Ios	15.3\(3\)je
Cisco	Ios	15.3\(3\)jf
Cisco	Ios	15.3\(3\)jf1
Cisco	Ios	15.3\(3\)jf2
Cisco	Ios	15.3\(3\)jf4
Cisco	Ios	15.3\(3\)jf5
Cisco	Ios	15.3\(3\)jf35
Cisco	Ios	15.3\(3\)jg
Cisco	Ios	15.3\(3\)jg1
Cisco	Ios	15.3\(3\)jh
Cisco	Ios	15.3\(3\)ji
Cisco	Ios	15.3\(3\)ji2
Cisco	Ios	15.3\(3\)jnp
Cisco	Ios	15.3\(3\)jnp1
Cisco	Ios	15.3\(3\)jnp3
Cisco	Ios	15.3\(3\)jpb
Cisco	Ios	15.3\(3\)jpb1
Cisco	Ios	15.3\(3\)jpc
Cisco	Ios	15.3\(3\)jpc1
Cisco	Ios	15.3\(3\)jpc2

Showing 50 of 164 affected configurations. See NVD for the full list.

References

http://www.securityfocus.com/bid/107597Broken Link, Third Party Advisory, VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbarPatch, Vendor Advisory
http://www.securityfocus.com/bid/107597Broken Link, Third Party Advisory, VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbarPatch, Vendor Advisory

Timeline

Published: Mar 28, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2019-1739?

How severe is CVE-2019-1739?

CVE-2019-1739 has a CVSS score of 7.5/10 (HIGH severity). The EPSS model estimates a 2.52% probability of exploitation in the next 30 days.

How do I fix CVE-2019-1739?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-1739?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST