From 77fcfa7b4f9d1d383fdbb75a9620fb8155acce0d Mon Sep 17 00:00:00 2001 From: santosomar Date: Thu, 8 Aug 2019 07:32:20 +0000 Subject: [PATCH] Adding Cisco CVE-2019-1970 --- 2019/1xxx/CVE-2019-1970.json | 77 ++++++++++++++++++++++++++++++++++-- 1 file changed, 73 insertions(+), 4 deletions(-) diff --git a/2019/1xxx/CVE-2019-1970.json b/2019/1xxx/CVE-2019-1970.json index c90b8c288b4..1f9c96dcb26 100644 --- a/2019/1xxx/CVE-2019-1970.json +++ b/2019/1xxx/CVE-2019-1970.json @@ -1,8 +1,34 @@ { "CVE_data_meta": { - "ASSIGNER": "cve@mitre.org", + "ASSIGNER": "psirt@cisco.com", + "DATE_PUBLIC": "2019-08-07T16:00:00-0700", "ID": "CVE-2019-1970", - "STATE": "RESERVED" + "STATE": "PUBLIC", + "TITLE": "Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability" + }, + "affects": { + "vendor": { + "vendor_data": [ + { + "product": { + "product_data": [ + { + "product_name": "Cisco Firepower Threat Defense Software ", + "version": { + "version_data": [ + { + "affected": "<", + "version_value": "n/a" + } + ] + } + } + ] + }, + "vendor_name": "Cisco" + } + ] + } }, "data_format": "MITRE", "data_type": "CVE", @@ -11,8 +37,51 @@ "description_data": [ { "lang": "eng", - "value": "** RESERVED ** This candidate has been reserved by an organization or individual that will use it when announcing a new security problem. When the candidate has been publicized, the details for this candidate will be provided." + "value": "A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol inspection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass the configured file policies on an affected system. The vulnerability is due to errors when handling specific SSL/TLS messages. An attacker could exploit this vulnerability by sending crafted HTTP packets that would flow through an affected system. A successful exploit could allow the attacker to bypass the configured file policies and deliver a malicious payload to the protected network. " } ] + }, + "exploit": [ + { + "lang": "eng", + "value": "The Cisco Product Security Incident Response Team (PSIRT) is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory. " + } + ], + "impact": { + "cvss": { + "baseScore": "5.8", + "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N ", + "version": "3.0" + } + }, + "problemtype": { + "problemtype_data": [ + { + "description": [ + { + "lang": "eng", + "value": "CWE-693" + } + ] + } + ] + }, + "references": { + "reference_data": [ + { + "name": "20190807 Cisco Firepower Threat Defense Software File Policy Bypass Vulnerability", + "refsource": "CISCO", + "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190807-ftd-bypass" + } + ] + }, + "source": { + "advisory": "cisco-sa-20190807-ftd-bypass", + "defect": [ + [ + "CSCvo11350" + ] + ], + "discovery": "INTERNAL" } -} \ No newline at end of file +}