2018-12-06 16:03:34 -05:00
{
2019-03-27 23:39:54 +00:00
"CVE_data_meta" : {
"ASSIGNER" : "psirt@cisco.com" ,
"DATE_PUBLIC" : "2019-03-27T16:00:00-0700" ,
"ID" : "CVE-2019-1746" ,
"STATE" : "PUBLIC" ,
"TITLE" : "Cisco IOS and IOS XE Software Cluster Management Protocol Denial of Service Vulnerability"
} ,
"affects" : {
"vendor" : {
"vendor_data" : [
{
"product" : {
"product_data" : [
{
"product_name" : "Cisco IOS and IOS XE Software" ,
"version" : {
"version_data" : [
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.0SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.1SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.2SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.3SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.4SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.5SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.6SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.7SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.8SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.9SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.10SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.2.11SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.0SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.2SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.1SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.0XO"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.1XO"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.2XO"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.0SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.2SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.1SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.3SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.4SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.5SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.6SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.7SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.8SG"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.0E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.1E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.2E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.3E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.10.4S"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.12.0aS"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.0E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.1E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.0aE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.0bE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.2aE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.2E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.3E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.4E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.5E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.6E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.5aE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.5bE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.7E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.8E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.7aE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.7bE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.9E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.6.10E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.0SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.3.1SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.0SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.4.1SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.7.0E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.7.1E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.7.2E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.7.3E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.7.4E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.7.5E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.0SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.1SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.2SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.3SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.4SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.5SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.6SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.7SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.5.8SQ"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.16.1S"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.16.0bS"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.16.10S"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.0E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.1E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.2E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.3E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.4E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.5E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.5aE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.6E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.8.7E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.9.0E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.9.1E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.9.2E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.9.2bE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "16.9.2h"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.10.0E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.10.1E"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.10.0cE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.10.1aE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "3.10.1sE"
2019-03-27 23:39:54 +00:00
} ,
{
2019-03-28 00:00:49 +00:00
"version_affected" : "=" ,
"version_value" : "16.12.1"
2019-03-27 23:39:54 +00:00
}
]
}
}
]
} ,
"vendor_name" : "Cisco"
}
]
}
} ,
"data_format" : "MITRE" ,
"data_type" : "CVE" ,
"data_version" : "4.0" ,
"description" : {
"description_data" : [
{
"lang" : "eng" ,
2019-03-28 00:00:49 +00:00
"value" : "A vulnerability in the Cluster Management Protocol (CMP) processing code in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to trigger a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient input validation when processing CMP management packets. An attacker could exploit this vulnerability by sending malicious CMP management packets to an affected device. A successful exploit could cause the switch to crash, resulting in a DoS condition. The switch will reload automatically."
2019-03-27 23:39:54 +00:00
}
]
} ,
"exploit" : [
{
"lang" : "eng" ,
"value" : "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. "
}
] ,
"impact" : {
"cvss" : {
"baseScore" : "7.4" ,
"vectorString" : "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H " ,
"version" : "3.0"
}
} ,
"problemtype" : {
"problemtype_data" : [
{
"description" : [
{
"lang" : "eng" ,
"value" : "CWE-20"
}
]
}
]
} ,
"references" : {
"reference_data" : [
{
"name" : "20190327 Cisco IOS and IOS XE Software Cluster Management Protocol Denial of Service Vulnerability" ,
"refsource" : "CISCO" ,
"url" : "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-cmp-dos"
2019-03-29 07:00:44 +00:00
} ,
{
"refsource" : "BID" ,
"name" : "107612" ,
"url" : "http://www.securityfocus.com/bid/107612"
2019-03-27 23:39:54 +00:00
}
]
} ,
"source" : {
"advisory" : "cisco-sa-20190327-cmp-dos" ,
"defect" : [
[
"CSCvj25068" ,
"CSCvj25124"
]
] ,
"discovery" : "INTERNAL"
}
2019-03-28 00:00:49 +00:00
}
