HIGH✓ PATCH🇵🇱 Wersja polska

CVE-2019-1869

CVSS 8.6v3.0pub. 2019-06-20upd. 2024-11-21

A vulnerability in the internal packet-processing functionality of the Cisco StarOS operating system running on virtual platforms could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to a logic error that may occur under specific traffic conditions. An attacker could exploit this vulnerability by sending a series of crafted packets to an affected device. A successful exploit could allow the attacker to prevent the targeted service interface from receiving any traffic, which would lead to a DoS condition on the affected interface. The device may have to be manually reloaded to recover from exploitation of this vulnerability.

CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Cisco Asr 5000

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 5500

    HW
    Cisco
    wszystkie wersje
  • Cisco Asr 5700

    HW
    Cisco
    wszystkie wersje
  • Cisco Staros

    OS
    Cisco
    21.8 – 21.8.10 (bez)21.9 – 21.9.7 (bez)21.6 – 21.6.13 (bez)21.11 – 21.11.1 (bez)21.10 – 21.10.2 (bez)21.6b – 21.6b.16 (bez)21.7 – 21.7.11 (bez)
🟢
PATCH AVAILABLE
Vendor update available. Deploy in standard maintenance cycle.
Tags
DoS
CWE
References

Related vulnerabilities

CVE-2025-32433CRITICAL10.0⚠ KEVPL ✓ten sam produkt

Erlang/OTP SSH — nieuwierzytelniony RCE (CVSS 10.0)

CVE-2023-20046HIGH8.8ten sam produkt

A vulnerability in the key-based SSH authentication feature of Cisco StarOS Software could allow an authentica...

CVE-2022-20919HIGH8.6ten sam produkt

A vulnerability in the processing of malformed Common Industrial Protocol (CIP) packets that are sent to Cisco...

CVE-2021-1539HIGH8.1ten sam produkt

Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow a...

CVE-2021-1540HIGH8.1ten sam produkt

Multiple vulnerabilities in the authorization process of Cisco ASR 5000 Series Software (StarOS) could allow a...