CVE-2019-1965

EPSS 1.05%
Published 28.08.2019 19:15:11
Last modified 21.11.2024 04:37:47
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the Virtual Shell (VSH) session management for Cisco NX-OS Software could allow an authenticated, remote attacker to cause a VSH process to fail to delete upon termination. This can lead to a build-up of VSH processes that overtime can deplete system memory. When there is no system memory available, this can cause unexpected system behaviors and crashes. The vulnerability is due to the VSH process not being properly deleted when a remote management connection to the device is disconnected. An attacker could exploit this vulnerability by repeatedly performing a remote management connection to the device and terminating the connection in an unexpected manner. A successful exploit could allow the attacker to cause the VSH processes to fail to delete, which can lead to a system-wide denial of service (DoS) condition. The attacker must have valid user credentials to log in to the device using the remote management connection.

Affected products Warnungen 0 Metrics 4 CWE 2 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Nx-os Version >= 5.2 < 6.2\(29\)

   Cisco ≫ Mds 9132t Version-
   Cisco ≫ Mds 9148s Version-
   Cisco ≫ Mds 9148t Version-
   Cisco ≫ Mds 9216 Version-
   Cisco ≫ Mds 9216a Version-
   Cisco ≫ Mds 9216i Version-
   Cisco ≫ Mds 9222i Version-
   Cisco ≫ Mds 9250i Version-
   Cisco ≫ Mds 9396s Version-
   Cisco ≫ Mds 9396t Version-
   Cisco ≫ Mds 9506 Version-
   Cisco ≫ Mds 9509 Version-
   Cisco ≫ Mds 9513 Version-
   Cisco ≫ Mds 9706 Version-
   Cisco ≫ Mds 9710 Version-
   Cisco ≫ Mds 9718 Version-

Cisco ≫ Nx-os Version >= 7.3 < 8.4

Cisco ≫ Nx-os Version >= 7.0\(3\)f < 9.2

   Cisco ≫ N9k-c9504-fm-r Version-
   Cisco ≫ N9k-c9508-fm-r Version-
   Cisco ≫ N9k-x96136yc-r Version-
   Cisco ≫ N9k-x9636c-r Version-
   Cisco ≫ N9k-x9636c-rx Version-
   Cisco ≫ N9k-x9636q-r Version-
   Cisco ≫ Nexus 36180yc-r Version-
   Cisco ≫ Nexus 3636c-r Version-
   Cisco ≫ X96136yc-r Version-
   Cisco ≫ X9636c-r Version-
   Cisco ≫ X9636c-rx Version-
   Cisco ≫ X9636q-r Version-

Cisco ≫ Nx-os Version < 7.1\(5\)n1\(1b\)

   Cisco ≫ Nexus 5010 Version-
   Cisco ≫ Nexus 5020 Version-
   Cisco ≫ Nexus 5548p Version-
   Cisco ≫ Nexus 5548up Version-
   Cisco ≫ Nexus 5596t Version-
   Cisco ≫ Nexus 5596up Version-
   Cisco ≫ Nexus 56128p Version-
   Cisco ≫ Nexus 5624q Version-
   Cisco ≫ Nexus 5648q Version-
   Cisco ≫ Nexus 5672up Version-
   Cisco ≫ Nexus 5672up-16g Version-
   Cisco ≫ Nexus 5696q Version-
   Cisco ≫ Nexus 6001 Version-
   Cisco ≫ Nexus 6004 Version-

Cisco ≫ Nx-os Version >= 7.3 < 7.3\(5\)n1\(1\)

Cisco ≫ Nx-os Version < 6.2\(22\)

   Cisco ≫ 7000 10-slot Version-
   Cisco ≫ 7000 18-slot Version-
   Cisco ≫ 7000 4-slot Version-
   Cisco ≫ 7000 9-slot Version-
   Cisco ≫ 7700 10-slot Version-
   Cisco ≫ 7700 18-slot Version-
   Cisco ≫ 7700 2-slot Version-
   Cisco ≫ 7700 6-slot Version-
   Cisco ≫ N77-f312ck-26 Version-
   Cisco ≫ N77-f324fq-25 Version-
   Cisco ≫ N77-f348xp-23 Version-
   Cisco ≫ N77-f430cq-36 Version-
   Cisco ≫ N77-m312cq-26l Version-
   Cisco ≫ N77-m324fq-25l Version-
   Cisco ≫ N77-m348xp-23l Version-
   Cisco ≫ N7k-f248xp-25e Version-
   Cisco ≫ N7k-f306ck-25 Version-
   Cisco ≫ N7k-f312fq-25 Version-
   Cisco ≫ N7k-m202cf-22l Version-
   Cisco ≫ N7k-m206fq-23l Version-
   Cisco ≫ N7k-m224xp-23l Version-
   Cisco ≫ N7k-m324fq-25l Version-
   Cisco ≫ N7k-m348xp-25l Version-
   Cisco ≫ Nexus 7000 Supervisor 1 Version-
   Cisco ≫ Nexus 7000 Supervisor 2 Version-
   Cisco ≫ Nexus 7000 Supervisor 2e Version-
   Cisco ≫ Nexus 7700 Supervisor 2e Version-
   Cisco ≫ Nexus 7700 Supervisor 3e Version-

Cisco ≫ Nx-os Version >= 7.2 < 7.3\(4\)d1\(1\)

Cisco ≫ Nx-os Version >= 8.0 < 8.2\(3\)

Cisco ≫ Nx-os Version >= 8.3 < 8.4

Cisco ≫ Nx-os Version < 7.0\(3\)i4\(9\)

   Cisco ≫ N9k-c92160yc-x Version-
   Cisco ≫ N9k-c9236c Version-
   Cisco ≫ N9k-c9272q Version-
   Cisco ≫ N9k-c93180lc-ex Version-
   Cisco ≫ N9k-c93180yc-ex Version-
   Cisco ≫ N9k-c93180yc-fx Version-
   Cisco ≫ N9k-x9732c-ex Version-
   Cisco ≫ N9k-x9736c-fx Version-
   Cisco ≫ Nexus 3048 Version-

Cisco ≫ Nx-os Version >= 7.0\(3\)i7 < 7.0\(3\)i7\(4\)

Cisco ≫ Nx-os Version >= 7.0\(3\)i7 < 7.0\(3\)i7\(6\)

Cisco ≫ Nexus 3524-x/xl Version-
Cisco ≫ Nexus 3548-x/xl Version-

Cisco ≫ Nx-os Version >= 9.2 < 9.2\(3\)

Cisco ≫ Nexus 3524-x/xl Version-
Cisco ≫ Nexus 3548-x/xl Version-

Cisco ≫ Nx-os Version < 3.2\(3k\)

   Cisco ≫ Ucs-6296up Version-
   Cisco ≫ Ucs 6248up Version-
   Cisco ≫ Ucs 6324 Version-
   Cisco ≫ Ucs 6332 Version-
   Cisco ≫ Ucs 6332-16up Version-

Cisco ≫ Nx-os Version >= 4.0 < 4.0\(2e\)

   Cisco ≫ Ucs-6296up Version-
   Cisco ≫ Ucs 6248up Version-
   Cisco ≫ Ucs 6324 Version-
   Cisco ≫ Ucs 6332 Version-
   Cisco ≫ Ucs 6332-16up Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.05%	0.755

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.7	3.1	4	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H
nvd@nist.gov	4	8	2.9	AV:N/AC:L/Au:S/C:N/I:N/A:P
psirt@cisco.com	7.7	3.1	4	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H

CWE-400 Uncontrolled Resource Consumption

The product does not properly control the allocation and maintenance of a limited resource, thereby enabling an actor to influence the amount of resources consumed, eventually leading to the exhaustion of available resources.

CWE-772 Missing Release of Resource after Effective Lifetime

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190828-nxos-memleak-dos

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-1965

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-1965

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-1965

EUVD