CVE-2019-1751

28.03.2019, 00:29

A vulnerability in the Network Address Translation 64 (NAT64) functions of Cisco IOS Software could allow an unauthenticated, remote attacker to cause either an interface queue wedge or a device reload. The vulnerability is due to the incorrect handling of certain IPv4 packet streams that are sent through the device. An attacker could exploit this vulnerability by sending specific IPv4 packet streams through the device. An exploit could allow the attacker to either cause an interface queue wedge or a device reload, resulting in a denial of service (DoS) condition.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
cisco	CNA	8.6 HIGH	NETWORK	LOW	NONE	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
CVE	ADP	---				---
CISA-ADP	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 77%

Vendor	Product	Version
cisco	ios	15.4\(1\)cg1
cisco	ios	15.4\(1\)t
cisco	ios	15.4\(1\)t1
cisco	ios	15.4\(1\)t2
cisco	ios	15.4\(1\)t3
cisco	ios	15.4\(1\)t4
cisco	ios	15.4\(2\)t
cisco	ios	15.4\(2\)t1
cisco	ios	15.4\(2\)t2
cisco	ios	15.4\(2\)t3
cisco	ios	15.4\(2\)t4
cisco	ios	15.4\(3\)m
cisco	ios	15.4\(3\)m1
cisco	ios	15.4\(3\)m2
cisco	ios	15.4\(3\)m3
cisco	ios	15.4\(3\)m4
cisco	ios	15.4\(3\)m5
cisco	ios	15.4\(3\)m6
cisco	ios	15.4\(3\)m6a
cisco	ios	15.4\(3\)m7
cisco	ios	15.4\(3\)m7a
cisco	ios	15.4\(3\)m8
cisco	ios	15.4\(3\)m9
cisco	ios	15.4\(3\)m10
cisco	ios	15.5\(1\)t
cisco	ios	15.5\(1\)t1
cisco	ios	15.5\(1\)t2
cisco	ios	15.5\(1\)t3
cisco	ios	15.5\(1\)t4
cisco	ios	15.5\(2\)t
cisco	ios	15.5\(2\)t1
cisco	ios	15.5\(2\)t2
cisco	ios	15.5\(2\)t3
cisco	ios	15.5\(2\)t4
cisco	ios	15.5\(2\)xb
cisco	ios	15.5\(3\)m
cisco	ios	15.5\(3\)m0a
cisco	ios	15.5\(3\)m1
cisco	ios	15.5\(3\)m2
cisco	ios	15.5\(3\)m2a
cisco	ios	15.5\(3\)m3
cisco	ios	15.5\(3\)m4
cisco	ios	15.5\(3\)m4a
cisco	ios	15.5\(3\)m4b
cisco	ios	15.5\(3\)m4c
cisco	ios	15.5\(3\)m5
cisco	ios	15.5\(3\)m5a
cisco	ios	15.5\(3\)m6
cisco	ios	15.5\(3\)m6a
cisco	ios	15.5\(3\)m7
cisco	ios	15.5\(3\)m8
cisco	ios	15.6\(1\)t
cisco	ios	15.6\(1\)t0a
cisco	ios	15.6\(1\)t1
cisco	ios	15.6\(1\)t2
cisco	ios	15.6\(1\)t3
cisco	ios	15.6\(2\)t
cisco	ios	15.6\(2\)t0a
cisco	ios	15.6\(2\)t1
cisco	ios	15.6\(2\)t2
cisco	ios	15.6\(2\)t3
cisco	ios	15.6\(3\)m
cisco	ios	15.6\(3\)m0a
cisco	ios	15.6\(3\)m1
cisco	ios	15.6\(3\)m1a
cisco	ios	15.6\(3\)m1b
cisco	ios	15.6\(3\)m2
cisco	ios	15.6\(3\)m2a
cisco	ios	15.6\(3\)m3
cisco	ios	15.6\(3\)m3a
cisco	ios	15.6\(3\)m4
cisco	ios	15.6\(3\)m5
cisco	ios	15.7\(3\)m
cisco	ios	15.7\(3\)m0a
cisco	ios	15.7\(3\)m1
cisco	ios	15.7\(3\)m2
cisco	ios	15.7\(3\)m3
cisco	ios	15.8\(3\)m
cisco	ios	15.8\(3\)m0a
cisco	ios	15.8\(3\)m0b

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-20 - Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References

http://www.securityfocus.com/bid/107601

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nat64

http://www.securityfocus.com/bid/107601

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190327-nat64