CVE-2019-1738

28.03.2019, 00:29

A vulnerability in the Network-Based Application Recognition (NBAR) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. This vulnerability is due to a parsing issue on DNS packets. An attacker could exploit these vulnerabilities by sending crafted DNS packets through routers that are running an affected version and have NBAR enabled. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	7.5 HIGH	NETWORK	LOW	NONE	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
cisco	CNA	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 82%

Vendor	Product	Version
cisco	ios	15.1\(2\)sg8a
cisco	ios	15.1\(3\)svg3d
cisco	ios	15.1\(3\)svi1b
cisco	ios	15.1\(3\)svk4b
cisco	ios	15.1\(3\)svk4c
cisco	ios	15.1\(3\)svm3
cisco	ios	15.1\(3\)svn2
cisco	ios	15.1\(3\)svo1
cisco	ios	15.1\(3\)svo2
cisco	ios	15.1\(3\)svo3
cisco	ios	15.1\(3\)svo4
cisco	ios	15.1\(3\)svp1
cisco	ios	15.1\(3\)svp2
cisco	ios	15.1\(4\)m12c
cisco	ios	15.2\(3\)ea1
cisco	ios	15.2\(4a\)ea5
cisco	ios	15.3\(3\)ja1n
cisco	ios	15.3\(3\)jd
cisco	ios	15.3\(3\)jd2
cisco	ios	15.3\(3\)jd3
cisco	ios	15.3\(3\)jd4
cisco	ios	15.3\(3\)jd5
cisco	ios	15.3\(3\)jd6
cisco	ios	15.3\(3\)jd7
cisco	ios	15.3\(3\)jd8
cisco	ios	15.3\(3\)jd9
cisco	ios	15.3\(3\)jd11
cisco	ios	15.3\(3\)jd12
cisco	ios	15.3\(3\)jd13
cisco	ios	15.3\(3\)jd14
cisco	ios	15.3\(3\)je
cisco	ios	15.3\(3\)jf
cisco	ios	15.3\(3\)jf1
cisco	ios	15.3\(3\)jf2
cisco	ios	15.3\(3\)jf4
cisco	ios	15.3\(3\)jf5
cisco	ios	15.3\(3\)jf35
cisco	ios	15.3\(3\)jg
cisco	ios	15.3\(3\)jg1
cisco	ios	15.3\(3\)jh
cisco	ios	15.3\(3\)ji
cisco	ios	15.3\(3\)ji2
cisco	ios	15.3\(3\)jnp
cisco	ios	15.3\(3\)jnp1
cisco	ios	15.3\(3\)jnp3
cisco	ios	15.3\(3\)jpb
cisco	ios	15.3\(3\)jpb1
cisco	ios	15.3\(3\)jpc
cisco	ios	15.3\(3\)jpc1
cisco	ios	15.3\(3\)jpc2
cisco	ios	15.3\(3\)jpc3
cisco	ios	15.3\(3\)jpc5
cisco	ios	15.3\(3\)jpd
cisco	ios	15.5\(3\)m
cisco	ios	15.5\(3\)m0a
cisco	ios	15.5\(3\)m1
cisco	ios	15.5\(3\)m2
cisco	ios	15.5\(3\)m2a
cisco	ios	15.5\(3\)m3
cisco	ios	15.5\(3\)m4
cisco	ios	15.5\(3\)m4a
cisco	ios	15.5\(3\)m4b
cisco	ios	15.5\(3\)m4c
cisco	ios	15.5\(3\)m5
cisco	ios	15.5\(3\)m5a
cisco	ios	15.5\(3\)s
cisco	ios	15.5\(3\)s0a
cisco	ios	15.5\(3\)s1
cisco	ios	15.5\(3\)s1a
cisco	ios	15.5\(3\)s2
cisco	ios	15.5\(3\)s3
cisco	ios	15.5\(3\)s4
cisco	ios	15.5\(3\)s5
cisco	ios	15.5\(3\)sn
cisco	ios	15.5\(3\)sn0a
cisco	ios	15.6\(1\)s
cisco	ios	15.6\(1\)s1
cisco	ios	15.6\(1\)s2
cisco	ios	15.6\(1\)s3
cisco	ios	15.6\(1\)s4
cisco	ios	15.6\(1\)sn
cisco	ios	15.6\(1\)sn1
cisco	ios	15.6\(1\)sn2
cisco	ios	15.6\(1\)sn3
cisco	ios	15.6\(1\)t
cisco	ios	15.6\(1\)t0a
cisco	ios	15.6\(1\)t1
cisco	ios	15.6\(1\)t2
cisco	ios	15.6\(2\)s
cisco	ios	15.6\(2\)s1
cisco	ios	15.6\(2\)s2
cisco	ios	15.6\(2\)s3
cisco	ios	15.6\(2\)s4
cisco	ios	15.6\(2\)sn
cisco	ios	15.6\(2\)sp3b
cisco	ios	15.6\(2\)t
cisco	ios	15.6\(2\)t0a
cisco	ios	15.6\(2\)t1
cisco	ios	15.6\(2\)t2
cisco	ios	15.6\(3\)m
cisco	ios	15.6\(3\)m0a
cisco	ios	15.6\(3\)m1
cisco	ios	15.6\(3\)m1a
cisco	ios	15.6\(3\)m1b
cisco	ios	15.6\(3\)sn
cisco	ios	15.6\(4\)sn
cisco	ios	15.6\(5\)sn
cisco	ios	15.6\(6\)sn
cisco	ios	15.6\(7\)sn
cisco	ios_xe	3.2.0ja:ja
cisco	ios_xe	3.16.0as:as
cisco	ios_xe	3.16.0bs:bs
cisco	ios_xe	3.16.0cs:cs
cisco	ios_xe	3.16.0s:s
cisco	ios_xe	3.16.1as:as
cisco	ios_xe	3.16.1s:s
cisco	ios_xe	3.16.2as:as
cisco	ios_xe	3.16.2bs:bs
cisco	ios_xe	3.16.2s:s
cisco	ios_xe	3.16.3as:as
cisco	ios_xe	3.16.3s:s
cisco	ios_xe	3.16.4as:as
cisco	ios_xe	3.16.4bs:bs
cisco	ios_xe	3.16.4cs:cs
cisco	ios_xe	3.16.4ds:ds
cisco	ios_xe	3.16.4es:es
cisco	ios_xe	3.16.4gs:gs
cisco	ios_xe	3.16.4s:s
cisco	ios_xe	3.16.5as:as
cisco	ios_xe	3.16.5s:s
cisco	ios_xe	3.17.0s:s
cisco	ios_xe	3.17.1as:as
cisco	ios_xe	3.17.1s:s
cisco	ios_xe	3.17.3s:s
cisco	ios_xe	3.17.4s:s
cisco	ios_xe	3.18.0as:as
cisco	ios_xe	3.18.0s:s
cisco	ios_xe	3.18.0sp:sp
cisco	ios_xe	3.18.1asp:asp
cisco	ios_xe	3.18.1bsp:bsp
cisco	ios_xe	3.18.1csp:csp
cisco	ios_xe	3.18.1gsp:gsp
cisco	ios_xe	3.18.1hsp:hsp
cisco	ios_xe	3.18.1isp:isp
cisco	ios_xe	3.18.1s:s
cisco	ios_xe	3.18.1sp:sp
cisco	ios_xe	3.18.2asp:asp
cisco	ios_xe	3.18.2s:s
cisco	ios_xe	3.18.2sp:sp
cisco	ios_xe	3.18.3s:s
cisco	ios_xe	3.18.4s:s
cisco	ios_xe	16.2.1
cisco	ios_xe	16.2.2
cisco	ios_xe	16.3.1
cisco	ios_xe	16.3.1a:a
cisco	ios_xe	16.3.2
cisco	ios_xe	16.3.3
cisco	ios_xe	16.3.4
cisco	ios_xe	16.4.1
cisco	ios_xe	16.4.2
cisco	ios_xe	16.4.3
cisco	ios_xe	16.5.1
cisco	ios_xe	16.5.1a:a
cisco	ios_xe	16.5.1b:b

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://www.securityfocus.com/bid/107597

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar

http://www.securityfocus.com/bid/107597

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nbar