SB2019012418 - Security restrictions bypass in Cisco Firepower Threat Defense

CSH
CYBERSECURITY HELP
Sign In REGISTER

Main Vulnerability Database SB2019012418

SB2019012418 - Security restrictions bypass in Cisco Firepower Threat Defense

Published: January 24, 2019

Security Bulletin ID SB2019012418
Severity
Medium
Patch available
YES
Number of vulnerabilities 1
Exploitation vector Remote access
Highest impact Data manipulation

Breakdown by Severity

Medium 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 1 security vulnerability.


1) Security restrictions bypass (CVE-ID: CVE-2019-1669)

The vulnerability allows a remote attacker to bypass configured access control policies or cause a denial of service (DoS) condition.

The vulnerability exists in the data acquisition (DAQ) component due to the affected software improperly manages system memory resources when inspecting traffic. A remote unauthenticated attacker can generate specific traffic patterns for the software to inspect, exhaust system memory resources used for traffic inspection to cause the FTD Software to fail open and cease to inspect traffic or fail closed and result in a DoS condition.


Remediation

Install update from vendor's website.

References