CVE-2019-1806

EPSS 0.88%
Published 15.05.2019 22:29:00
Last modified 21.11.2024 04:37:25
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco Small Business Sx200, Sx300, Sx500, ESW2 Series Managed Switches and Small Business Sx250, Sx350, Sx550 Series Switches could allow an authenticated, remote attacker to cause the SNMP application of an affected device to cease processing traffic, resulting in the CPU utilization reaching one hundred percent. Manual intervention may be required before a device resumes normal operations. The vulnerability is due to improper validation of SNMP protocol data units (PDUs) in SNMP packets. An attacker could exploit this vulnerability by sending a malicious SNMP packet to an affected device. A successful exploit could allow the attacker to cause the device to cease forwarding traffic, which could result in a denial of service (DoS) condition. Cisco has released firmware updates that address this vulnerability.

Affected products Warnungen 0 Metrics 4 CWE 2 References 5

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Sf200-24 Firmware Version < 1.4.10.6

Cisco ≫ Sf200-24 Version-

Cisco ≫ Sf200-24p Firmware Version < 1.4.10.6

Cisco ≫ Sf200-24p Version-

Cisco ≫ Sf200-48 Firmware Version < 1.4.10.6

Cisco ≫ Sf200-48 Version-

Cisco ≫ Sf200-48p Firmware Version < 1.4.10.6

Cisco ≫ Sf200-48p Version-

Cisco ≫ Sg200-18 Firmware Version < 1.4.10.6

Cisco ≫ Sg200-18 Version-

Cisco ≫ Sg200-26 Firmware Version < 1.4.10.6

Cisco ≫ Sg200-26 Version-

Cisco ≫ Sg200-26p Firmware Version < 1.4.10.6

Cisco ≫ Sg200-26p Version-

Cisco ≫ Sg200-50 Firmware Version < 1.4.10.6

Cisco ≫ Sg200-50 Version-

Cisco ≫ Sg200-50p Firmware Version < 1.4.10.6

Cisco ≫ Sg200-50p Version-

Cisco ≫ Sg300-10 Firmware Version < 1.4.10.6

Cisco ≫ Sg300-10 Version-

Cisco ≫ Sg300-10mp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-10mp Version-

Cisco ≫ Sg300-10mpp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-10mpp Version-

Cisco ≫ Sg300-10sfp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-10sfp Version-

Cisco ≫ Sg300-10p Firmware Version < 1.4.10.6

Cisco ≫ Sg300-10p Version-

Cisco ≫ Sg300-10pp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-10pp Version-

Cisco ≫ Sg300-20 Firmware Version < 1.4.10.6

Cisco ≫ Sg300-20 Version-

Cisco ≫ Sg300-28 Firmware Version < 1.4.10.6

Cisco ≫ Sg300-28 Version-

Cisco ≫ Sg300-28p Firmware Version < 1.4.10.6

Cisco ≫ Sg300-28p Version-

Cisco ≫ Sg300-28pp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-28pp Version-

Cisco ≫ Sg300-28mp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-28mp Version-

Cisco ≫ Sg300-28sfp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-28sfp Version-

Cisco ≫ Sg300-52 Firmware Version < 1.4.10.6

Cisco ≫ Sg300-52 Version-

Cisco ≫ Sg300-52p Firmware Version < 1.4.10.6

Cisco ≫ Sg300-52p Version-

Cisco ≫ Sg300-52mp Firmware Version < 1.4.10.6

Cisco ≫ Sg300-52mp Version-

Cisco ≫ Sf300-08 Firmware Version < 1.4.10.6

Cisco ≫ Sf300-08 Version-

Cisco ≫ Sf302-08 Firmware Version < 1.4.10.6

Cisco ≫ Sf302-08 Version-

Cisco ≫ Sf302-08mp Firmware Version < 1.4.10.6

Cisco ≫ Sf302-08mp Version-

Cisco ≫ Sf302-08p Firmware Version < 1.4.10.6

Cisco ≫ Sf302-08p Version-

Cisco ≫ Sf302-08pp Firmware Version < 1.4.10.6

Cisco ≫ Sf302-08pp Version-

Cisco ≫ Sf302-08mpp Firmware Version < 1.4.10.6

Cisco ≫ Sf302-08mpp Version-

Cisco ≫ Sf300-24 Firmware Version < 1.4.10.6

Cisco ≫ Sf300-24 Version-

Cisco ≫ Sf300-24p Firmware Version < 1.4.10.6

Cisco ≫ Sf300-24p Version-

Cisco ≫ Sf300-24mp Firmware Version < 1.4.10.6

Cisco ≫ Sf300-24mp Version-

Cisco ≫ Sf300-24pp Firmware Version < 1.4.10.6

Cisco ≫ Sf300-24pp Version-

Cisco ≫ Sf300-48 Firmware Version < 1.4.10.6

Cisco ≫ Sf300-48 Version-

Cisco ≫ Sf300-48p Firmware Version < 1.4.10.6

Cisco ≫ Sf300-48p Version-

Cisco ≫ Sf300-48pp Firmware Version < 1.4.10.6

Cisco ≫ Sf300-48pp Version-

Cisco ≫ Sf500-24 Firmware Version < 1.4.10.6

Cisco ≫ Sf500-24 Version-

Cisco ≫ Sf500-24p Firmware Version < 1.4.10.6

Cisco ≫ Sf500-24p Version-

Cisco ≫ Sf500-24mp Firmware Version < 1.4.10.6

Cisco ≫ Sf500-24mp Version-

Cisco ≫ Sf500-48 Firmware Version < 1.4.10.6

Cisco ≫ Sf500-48 Version-

Cisco ≫ Sf500-48p Firmware Version < 1.4.10.6

Cisco ≫ Sf500-48p Version-

Cisco ≫ Sf500-48mp Firmware Version < 1.4.10.6

Cisco ≫ Sf500-48mp Version-

Cisco ≫ Sg500-28 Firmware Version < 1.4.10.6

Cisco ≫ Sg500-28 Version-

Cisco ≫ Sg500-28p Firmware Version < 1.4.10.6

Cisco ≫ Sg500-28p Version-

Cisco ≫ Sg500-28mpp Firmware Version < 1.4.10.6

Cisco ≫ Sg500-28mpp Version-

Cisco ≫ Sg500-52 Firmware Version < 1.4.10.6

Cisco ≫ Sg500-52 Version-

Cisco ≫ Sg500-52p Firmware Version < 1.4.10.6

Cisco ≫ Sg500-52p Version-

Cisco ≫ Sg500-52mp Firmware Version < 1.4.10.6

Cisco ≫ Sg500-52mp Version-

Cisco ≫ Sg500x-24 Firmware Version < 1.4.10.6

Cisco ≫ Sg500x-24 Version-

Cisco ≫ Sg500x-24p Firmware Version < 1.4.10.6

Cisco ≫ Sg500x-24p Version-

Cisco ≫ Sg500x24mpp Firmware Version < 1.4.10.6

Cisco ≫ Sg500x24mpp Version-

Cisco ≫ Sg500x-48 Firmware Version < 1.4.10.6

Cisco ≫ Sg500x-48 Version-

Cisco ≫ Sg500x-48p Firmware Version < 1.4.10.6

Cisco ≫ Sg500x-48p Version-

Cisco ≫ Sg500x-48mp Firmware Version < 1.4.10.6

Cisco ≫ Sg500x-48mp Version-

Cisco ≫ Sg500xg8f8t Firmware Version < 1.4.10.6

Cisco ≫ Sg500xg8f8t Version-

Cisco ≫ Esw2-350g52dc Firmware Version < 1.4.10.6

Cisco ≫ Esw2-350g52dc Version-

Cisco ≫ Esw2-550x48dc Firmware Version < 1.4.10.6

Cisco ≫ Esw2-550x48dc Version-

Cisco ≫ Sg250x-24 Firmware Version < 2.5.0.78

Cisco ≫ Sg250x-24 Version-

Cisco ≫ Sg250x-24p Firmware Version < 2.5.0.78

Cisco ≫ Sg250x-24p Version-

Cisco ≫ Sg250x-48 Firmware Version < 2.5.0.78

Cisco ≫ Sg250x-48 Version-

Cisco ≫ Sg250x-48p Firmware Version < 2.5.0.78

Cisco ≫ Sg250x-48p Version-

Cisco ≫ Sg250-08 Firmware Version < 2.5.0.78

Cisco ≫ Sg250-08 Version-

Cisco ≫ Sg250-08hp Firmware Version < 2.5.0.78

Cisco ≫ Sg250-08hp Version-

Cisco ≫ Sg250-10p Firmware Version < 2.5.0.78

Cisco ≫ Sg250-10p Version-

Cisco ≫ Sg250-18 Firmware Version < 2.5.0.78

Cisco ≫ Sg250-18 Version-

Cisco ≫ Sg250-26 Firmware Version < 2.5.0.78

Cisco ≫ Sg250-26 Version-

Cisco ≫ Sg250-26hp Firmware Version < 2.5.0.78

Cisco ≫ Sg250-26hp Version-

Cisco ≫ Sg250-26p Firmware Version < 2.5.0.78

Cisco ≫ Sg250-26p Version-

Cisco ≫ Sg250-50 Firmware Version < 2.5.0.78

Cisco ≫ Sg250-50 Version-

Cisco ≫ Sg250-50hp Firmware Version < 2.5.0.78

Cisco ≫ Sg250-50hp Version-

Cisco ≫ Sg250-50p Firmware Version < 2.5.0.78

Cisco ≫ Sg250-50p Version-

Cisco ≫ Sf250-24 Firmware Version < 2.5.0.78

Cisco ≫ Sf250-24 Version-

Cisco ≫ Sf250-24p Firmware Version < 2.5.0.78

Cisco ≫ Sf250-24p Version-

Cisco ≫ Sf250-48 Firmware Version < 2.5.0.78

Cisco ≫ Sf250-48 Version-

Cisco ≫ Sf250-48hp Firmware Version < 2.5.0.78

Cisco ≫ Sf250-48hp Version-

Cisco ≫ Sg350-10 Firmware Version < 2.5.0.78

Cisco ≫ Sg350-10 Version-

Cisco ≫ Sg350-10p Firmware Version < 2.5.0.78

Cisco ≫ Sg350-10p Version-

Cisco ≫ Sg350-10mp Firmware Version < 2.5.0.78

Cisco ≫ Sg350-10mp Version-

Cisco ≫ Sg355-10p Firmware Version < 2.5.0.78

Cisco ≫ Sg355-10p Version-

Cisco ≫ Sg350-28 Firmware Version < 2.5.0.78

Cisco ≫ Sg350-28 Version-

Cisco ≫ Sg350-28p Firmware Version < 2.5.0.78

Cisco ≫ Sg350-28p Version-

Cisco ≫ Sg350-28mp Firmware Version < 2.5.0.78

Cisco ≫ Sg350-28mp Version-

Cisco ≫ Sf350-48 Firmware Version < 2.5.0.78

Cisco ≫ Sf350-48 Version-

Cisco ≫ Sf350-48p Firmware Version < 2.5.0.78

Cisco ≫ Sf350-48p Version-

Cisco ≫ Sf350-48mp Firmware Version < 2.5.0.78

Cisco ≫ Sf350-48mp Version-

Cisco ≫ Sx550x-16ft Firmware Version < 2.5.0.78

Cisco ≫ Sx550x-16ft Version-

Cisco ≫ Sx550x-24ft Firmware Version < 2.5.0.78

Cisco ≫ Sx550x-24ft Version-

Cisco ≫ Sx550x-12f Firmware Version < 2.5.0.78

Cisco ≫ Sx550x-12f Version-

Cisco ≫ Sx550x-24f Firmware Version < 2.5.0.78

Cisco ≫ Sx550x-24f Version-

Cisco ≫ Sx550x-24 Firmware Version < 2.5.0.78

Cisco ≫ Sx550x-24 Version-

Cisco ≫ Sx550x-52 Firmware Version < 2.5.0.78

Cisco ≫ Sx550x-52 Version-

Cisco ≫ Sg550x-24 Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-24 Version-

Cisco ≫ Sg550x-24p Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-24p Version-

Cisco ≫ Sg550x-24mp Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-24mp Version-

Cisco ≫ Sg550x-24mpp Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-24mpp Version-

Cisco ≫ Sg550x-48 Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-48 Version-

Cisco ≫ Sg550x-48p Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-48p Version-

Cisco ≫ Sg550x-48mp Firmware Version < 2.5.0.78

Cisco ≫ Sg550x-48mp Version-

Cisco ≫ Sf550x-24 Firmware Version < 2.5.0.78

Cisco ≫ Sf550x-24 Version-

Cisco ≫ Sf550x-24p Firmware Version < 2.5.0.78

Cisco ≫ Sf550x-24p Version-

Cisco ≫ Sf550x-24mp Firmware Version < 2.5.0.78

Cisco ≫ Sf550x-24mp Version-

Cisco ≫ Sf550x-48 Firmware Version < 2.5.0.78

Cisco ≫ Sf550x-48 Version-

Cisco ≫ Sf550x-48p Firmware Version < 2.5.0.78

Cisco ≫ Sf550x-48p Version-

Cisco ≫ Sf550x-48mp Firmware Version < 2.5.0.78

Cisco ≫ Sf550x-48mp Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.88%	0.743

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.7	3.1	4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
nvd@nist.gov	6.8	8	6.9	AV:N/AC:L/Au:S/C:N/I:N/A:C
psirt@cisco.com	7.7	3.1	4	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

CWE-770 Allocation of Resources Without Limits or Throttling

The product allocates a reusable resource or group of resources on behalf of an actor without imposing any restrictions on the size or number of resources that can be allocated, in violation of the intended security policy for that actor.

http://www.securityfocus.com/bid/108335

Third Party Advisory

VDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-sb-snmpdos

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-1806

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-1806

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-1806

EUVD