Vulnerability Details : CVE-2019-1978

A vulnerability in the stream reassembly component of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to improper reassembly of traffic streams. An attacker could exploit this vulnerability by sending crafted streams through an affected device. An exploit could allow the attacker to bypass filtering and deliver malicious requests to protected systems that would otherwise be blocked.

Vulnerability category: Input validation

Published 2019-11-05 20:15:12

Updated 2020-10-16 14:26:03

Source Cisco Systems, Inc.

View at NVD, CVE.org

Exploit prediction scoring system (EPSS) score for CVE-2019-1978

Probability of exploitation activity in the next 30 days: 0.92%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 81 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2019-1978

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Source
5.0	MEDIUM	AV:N/AC:L/Au:N/C:N/I:P/A:N	10.0	2.9	[email protected]
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
5.8	MEDIUM	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N	3.9	1.4	[email protected]
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Changed Confidentiality: None Integrity: Low Availability: None
5.8	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N	3.9	1.4	[email protected]
Attack Vector: Network Attack Complexity: Low Privileges Required: None User Interaction: None Scope: Changed Confidentiality: None Integrity: Low Availability: None

CWE ids for CVE-2019-1978

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Assigned by: [email protected] (Primary)
CWE-264

Assigned by: [email protected] (Secondary)

References for CVE-2019-1978

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190816-ftd-srb

Vendor Advisory

Products affected by CVE-2019-1978

Cisco » Firepower Management Center
Versions from including (>=) 2.9.13 and up to, including, (<=) 2.9.13.6
cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*
Matching versions
Cisco » Firepower Management Center
Versions from including (>=) 2.9.12 and up to, including, (<=) 2.9.12.15
cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*
Matching versions
Cisco » Firepower Management Center
Versions from including (>=) 2.9.14.0 and up to, including, (<=) 2.9.14.5
cpe:2.3:a:cisco:firepower_management_center:*:*:*:*:*:*:*:*
Matching versions
Cisco » Firepower Management Center » Version: 2.9.16
cpe:2.3:a:cisco:firepower_management_center:2.9.16:*:*:*:*:*:*:*
Matching versions
Cisco » Firepower Management Center » Version: 2.9.15
cpe:2.3:a:cisco:firepower_management_center:2.9.15:*:*:*:*:*:*:*
Matching versions
Cisco » Firepower Services Software For Asa
cpe:2.3:a:cisco:firepower_services_software_for_asa:*:*:*:*:*:*:*:*
Matching versions
Cisco » Firepower Threat Defense
cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*
Matching versions