7.7

CVE-2019-16027

A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition in the IS–IS process. The vulnerability is due to improper handling of a Simple Network Management Protocol (SNMP) request for specific Object Identifiers (OIDs) by the IS–IS process. An attacker could exploit this vulnerability by sending a crafted SNMP request to the affected device. A successful exploit could allow the attacker to cause a DoS condition in the IS–IS process.

Daten sind bereitgestellt durch National Vulnerability Database (NVD)
CiscoIos Xr Version4.3.2
   CiscoXr 12404 Version-
   CiscoXr 12406 Version-
   CiscoXr 12410 Version-
   CiscoXr 12416 Version-
CiscoIos Xr Version5.2.5
   CiscoNcs 6000 Version-
   CiscoNcs 6008 Version-
CiscoIos Xr Version6.2.2
   CiscoNcs 6000 Version-
   CiscoNcs 6008 Version-
CiscoIos Xr Version6.2.3
   CiscoNcs 6000 Version-
   CiscoNcs 6008 Version-
CiscoIos Xr Version6.2.25
   CiscoNcs 6000 Version-
   CiscoNcs 6008 Version-
CiscoIos Xr Version6.3.3
   CiscoNcs 6000 Version-
   CiscoNcs 6008 Version-
CiscoIos Xr Version6.4.2
   CiscoNcs 6000 Version-
   CiscoNcs 6008 Version-
CiscoIos Xr Version6.1.3
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.1.4
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.2.3
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.2.25
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.3.3
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.4.2
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.5.2
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.5.3
   CiscoNcs 5001 Version-
   CiscoNcs 5002 Version-
   CiscoNcs 5011 Version-
CiscoIos Xr Version6.1.3
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.1.4
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.2.3
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.3.3
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.3.15
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.5.2
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.5.3
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.6.1
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.6.25
   CiscoNcs 5500 Version-
   CiscoNcs 5501 Version-
   CiscoNcs 5502 Version-
   CiscoNcs 5508 Version-
   CiscoNcs 5516 Version-
CiscoIos Xr Version6.1.4
   CiscoCrs Version-
CiscoIos Xr Version6.2.3
   CiscoCrs Version-
CiscoIos Xr Version6.4.2
   CiscoCrs Version-
CiscoIos Xr Version6.1.4
   CiscoXrv 9000 Version-
CiscoIos Xr Version6.2.3
   CiscoXrv 9000 Version-
CiscoIos Xr Version6.4.2
   CiscoXrv 9000 Version-
CiscoIos Xr Version6.5.3
   CiscoXrv 9000 Version-
CiscoIos Xr Version6.6.2
   CiscoXrv 9000 Version-
CiscoIos Xr Version6.3.3
   CiscoNcs 540 Version-
CiscoIos Xr Version6.5.3
   CiscoNcs 540 Version-
CiscoIos Xr Version6.6.25
   CiscoNcs 540 Version-
CiscoIos Xr Version6.6.25
   CiscoNcs 560 Version-
CiscoIos Xr Version6.1.2
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.1.3
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.1.4
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.2.2
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.2.3
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.3.2
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.3.3
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.4.2
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.5.2
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.5.3
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
CiscoIos Xr Version6.6.2
   CiscoAsr 9000 Version-
   CiscoAsr 9000v Versionv2
   CiscoAsr 9001 Version-
   CiscoAsr 9006 Version-
   CiscoAsr 9010 Version-
   CiscoAsr 9901 Version-
   CiscoAsr 9903 Version-
   CiscoAsr 9904 Version-
   CiscoAsr 9906 Version-
   CiscoAsr 9910 Version-
   CiscoAsr 9912 Version-
   CiscoAsr 9920 Version-
   CiscoAsr 9922 Version-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 1.07% 0.77
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 6.5 2.8 3.6
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov 4 8 2.9
AV:N/AC:L/Au:S/C:N/I:N/A:P
psirt@cisco.com 7.7 3.1 4
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.