CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1749

A vulnerability in the ingress traffic validation of Cisco IOS XE Software for Cisco Aggregation Services Router (ASR) 900 Route Switch Processor 3 (RSP3) could allow an unauthenticated, adjacent attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability exists because the software insufficiently validates ingress traffic on the ASIC used on the RSP3 platform. An attacker could exploit this vulnerability by sending a malformed OSPF version 2 (OSPFv2) message to an affected device. A successful exploit could allow the attacker to cause a reload of the iosd process, triggering a reload of the affected device and resulting in a DoS condition.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 58.6%

CVSS Severity

CVSS v3 Score 7.4

CVSS v2 Score 6.1

References

Products affected by CVE-2019-1749

Cisco » Ios Xe » Version: 16.5.1

cpe:2.3:o:cisco:ios_xe:16.5.1
Cisco » Ios Xe » Version: 16.5.2

cpe:2.3:o:cisco:ios_xe:16.5.2
Cisco » Ios Xe » Version: 16.5.3

cpe:2.3:o:cisco:ios_xe:16.5.3
Cisco » Ios Xe » Version: 16.6.1

cpe:2.3:o:cisco:ios_xe:16.6.1
Cisco » Ios Xe » Version: 16.6.2

cpe:2.3:o:cisco:ios_xe:16.6.2
Cisco » Ios Xe » Version: 16.6.3

cpe:2.3:o:cisco:ios_xe:16.6.3
Cisco » Ios Xe » Version: 16.6.4

cpe:2.3:o:cisco:ios_xe:16.6.4
Cisco » Ios Xe » Version: 16.7.1

cpe:2.3:o:cisco:ios_xe:16.7.1
Cisco » Ios Xe » Version: 16.7.2

cpe:2.3:o:cisco:ios_xe:16.7.2
Cisco » Ios Xe » Version: 16.8.1

cpe:2.3:o:cisco:ios_xe:16.8.1
Cisco » Ios Xe » Version: 16.8.1b

cpe:2.3:o:cisco:ios_xe:16.8.1b
Cisco » Ios Xe » Version: 16.8.1c

cpe:2.3:o:cisco:ios_xe:16.8.1c
Cisco » Ios Xe » Version: 3.13.6as

cpe:2.3:o:cisco:ios_xe:3.13.6as
Cisco » Ios Xe » Version: 3.16.0as

cpe:2.3:o:cisco:ios_xe:3.16.0as
Cisco » Ios Xe » Version: 3.16.1as

cpe:2.3:o:cisco:ios_xe:3.16.1as
Cisco » Ios Xe » Version: 3.16.2as

cpe:2.3:o:cisco:ios_xe:3.16.2as
Cisco » Ios Xe » Version: 3.16.3as

cpe:2.3:o:cisco:ios_xe:3.16.3as
Cisco » Ios Xe » Version: 3.16.4bs

cpe:2.3:o:cisco:ios_xe:3.16.4bs
Cisco » Ios Xe » Version: 3.16.4cs

cpe:2.3:o:cisco:ios_xe:3.16.4cs
Cisco » Ios Xe » Version: 3.16.4ds

cpe:2.3:o:cisco:ios_xe:3.16.4ds
Cisco » Ios Xe » Version: 3.16.4es

cpe:2.3:o:cisco:ios_xe:3.16.4es
Cisco » Ios Xe » Version: 3.16.4gs

cpe:2.3:o:cisco:ios_xe:3.16.4gs
Cisco » Ios Xe » Version: 3.16.4s

cpe:2.3:o:cisco:ios_xe:3.16.4s
Cisco » Ios Xe » Version: 3.16.5as

cpe:2.3:o:cisco:ios_xe:3.16.5as
Cisco » Ios Xe » Version: 3.16.5s

cpe:2.3:o:cisco:ios_xe:3.16.5s
Cisco » Ios Xe » Version: 3.16.6bs

cpe:2.3:o:cisco:ios_xe:3.16.6bs
Cisco » Ios Xe » Version: 3.16.6s

cpe:2.3:o:cisco:ios_xe:3.16.6s
Cisco » Ios Xe » Version: 3.16.7bs

cpe:2.3:o:cisco:ios_xe:3.16.7bs
Cisco » Ios Xe » Version: 3.16.7s

cpe:2.3:o:cisco:ios_xe:3.16.7s
Cisco » Ios Xe » Version: 3.16.8s

cpe:2.3:o:cisco:ios_xe:3.16.8s
Cisco » Ios Xe » Version: 3.17.0s

cpe:2.3:o:cisco:ios_xe:3.17.0s
Cisco » Ios Xe » Version: 3.17.1s

cpe:2.3:o:cisco:ios_xe:3.17.1s
Cisco » Ios Xe » Version: 3.17.3s

cpe:2.3:o:cisco:ios_xe:3.17.3s
Cisco » Ios Xe » Version: 3.17.4s

cpe:2.3:o:cisco:ios_xe:3.17.4s
Cisco » Ios Xe » Version: 3.18.0s

cpe:2.3:o:cisco:ios_xe:3.18.0s
Cisco » Ios Xe » Version: 3.18.0sp

cpe:2.3:o:cisco:ios_xe:3.18.0sp
Cisco » Ios Xe » Version: 3.18.1bsp

cpe:2.3:o:cisco:ios_xe:3.18.1bsp
Cisco » Ios Xe » Version: 3.18.1gsp

cpe:2.3:o:cisco:ios_xe:3.18.1gsp
Cisco » Ios Xe » Version: 3.18.1hsp

cpe:2.3:o:cisco:ios_xe:3.18.1hsp
Cisco » Ios Xe » Version: 3.18.1isp

cpe:2.3:o:cisco:ios_xe:3.18.1isp
Cisco » Ios Xe » Version: 3.18.1s

cpe:2.3:o:cisco:ios_xe:3.18.1s
Cisco » Ios Xe » Version: 3.18.1sp

cpe:2.3:o:cisco:ios_xe:3.18.1sp
Cisco » Ios Xe » Version: 3.18.2s

cpe:2.3:o:cisco:ios_xe:3.18.2s
Cisco » Ios Xe » Version: 3.18.2sp

cpe:2.3:o:cisco:ios_xe:3.18.2sp
Cisco » Ios Xe » Version: 3.18.3s

cpe:2.3:o:cisco:ios_xe:3.18.3s
Cisco » Ios Xe » Version: 3.18.3sp

cpe:2.3:o:cisco:ios_xe:3.18.3sp
Cisco » Ios Xe » Version: 3.18.4s

cpe:2.3:o:cisco:ios_xe:3.18.4s
Cisco » Ios Xe » Version: 3.18.4sp

cpe:2.3:o:cisco:ios_xe:3.18.4sp

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2019-1749

Products

Pricing

Contact Us