CVE-2019-1983

EPSS 1.07%
Published 23.09.2020 01:15:14
Last modified 21.11.2024 04:37:49
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the email message filtering feature of Cisco AsyncOS Software for Cisco Email Security Appliance (ESA) and Cisco Content Security Management Appliance (SMA) could allow an unauthenticated, remote attacker to cause repeated crashes in some internal processes that are running on the affected devices, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient input validation of email attachments. An attacker could exploit this vulnerability by sending an email message with a crafted attachment through an affected device. A successful exploit could allow the attacker to cause specific processes to crash repeatedly, resulting in the complete unavailability of both the Cisco Advanced Malware Protection (AMP) and message tracking features and in severe performance degradation while processing email. After the affected processes restart, the software resumes filtering for the same attachment, causing the affected processes to crash and restart again. A successful exploit could also allow the attacker to cause a repeated DoS condition. Manual intervention may be required to recover from this situation.

Affected products Warnungen 0 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Content Security Management Appliance Version11.4.0-812

Cisco ≫ Asyncos Version < 11.0.1-161

Cisco ≫ Asyncos Version >= 12.0 <= 12.5.0-633

Cisco ≫ Email Security Appliance Version11.0.1-hp5-602

Cisco ≫ Email Security Appliance Version11.1.0-404

Cisco ≫ Asyncos Version < 11.0.3-251

Cisco ≫ Asyncos Version >= 12.0 < 12.5.0-059

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.07%	0.757

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.3	3.9	1.4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C
psirt@cisco.com	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20200219-esa-sma-dos

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-1983

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-1983

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-1983

EUVD