Cisco IOS XE Filesystem Resource Management Crash denial of service
| CVSS Meta Temp Score | Current Exploit Price (β) |
|---|---|
| 5.1 | $0-$5k |
A vulnerability classified as problematic was found in Cisco IOS XE (Router Operating System) (the affected version is unknown). This vulnerability affects an unknown function of the component Filesystem Resource Management. The manipulation with an unknown input leads to a denial of service vulnerability (Crash). The CWE definition for the vulnerability is CWE-404. As an impact it is known to affect availability.
The weakness was disclosed 09/25/2019 as cisco-sa-20190925-iosxe-fsdos as confirmed advisory (Website). The advisory is available at tools.cisco.com. This vulnerability was named CVE-2019-12658 since 06/04/2019. The attack can be initiated remotely. No form of authentication is required for a successful exploitation. The technical details are unknown and an exploit is not available. The structure of the vulnerability defines a possible price range of USD $0-$5k at the moment (estimation calculated on 09/26/2019).
Upgrading eliminates this vulnerability.
The entries 142285, 142284, 142283 and 142281 are pretty similar.
Type
Vendor
Name
VulDB Meta Base Score: 5.3
VulDB Meta Temp Score: 5.1
VulDB Base Score: 5.3
VulDB Temp Score: 5.1
VulDB Vector: π
VulDB Reliability: π
| AV | AC | Au | C | I | A |
|---|---|---|---|---|---|
| π | π | π | π | π | π |
| π | π | π | π | π | π |
| π | π | π | π | π | π |
| Vector | Complexity | Authentication | Confidentiality | Integrity | Availability |
|---|---|---|---|---|---|
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
| unlock | unlock | unlock | unlock | unlock | unlock |
VulDB Base Score: π
VulDB Temp Score: π
VulDB Reliability: π
Class: Denial of service / Crash (CWE-404)
Local: No
Remote: Yes
Availability: π
Status: Not defined
Price Prediction: π
Current Price Estimation: π
| 0-Day | unlock | unlock | unlock | unlock |
|---|---|---|---|---|
| Today | unlock | unlock | unlock | unlock |
Threat Intelligence
Threat: π
Adversaries: π
Geopolitics: π
Economy: π
Predictions: π
Remediation: πRecommended: Upgrade
Status: π
0-Day Time: π
06/04/2019 CVE assigned
09/25/2019 Advisory disclosed
09/26/2019 VulDB entry created
09/26/2019 VulDB last updateVendor: cisco.com
Advisory: cisco-sa-20190925-iosxe-fsdos
Status: Confirmed
CVE: CVE-2019-12658 (π)
scip Labs: https://www.scip.ch/en/?labs.20150108
See also: π
Created: 09/26/2019 12:38 PM
Complete: π
Comments
Download it now for free!
https://vuldb.com/?id.142282
Comments are closed.
No comments yet. Please log in to comment.