CVE-2019-1962

A vulnerability in the Cisco Fabric Services component of Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause process crashes, which can result in a denial of service (DoS) condition on an affected system. The vulnerability is due to insufficient validation of TCP packets when processed by the Cisco Fabric Services over IP (CFSoIP) feature. An attacker could exploit this vulnerability by sending a malicious Cisco Fabric Services TCP packet to an affected device. A successful exploit could allow the attacker to cause process crashes, resulting in a device reload and a DoS condition. Note: There are three distribution methods that can be configured for Cisco Fabric Services. This vulnerability affects only distribution method CFSoIP, which is disabled by default. See the Details section for more information.

Severity	HIGH
CVSS	8.6
CWE	CWE-20
KEV
Published	6 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus Dashboard	cisco-sa-20190828-nxos-fsip-dos
Cisco MDS 9000 Family of Multilayer Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Firepower Extensible Operating System (FXOS)	cisco-sa-20190828-nxos-fsip-dos
Cisco Catalyst PON Series Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Unified Computing System (Managed)	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus 9000 Series Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus 7000 Series Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus 6000 Series Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus 5000 Series Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus 3000 Series Switches	cisco-sa-20190828-nxos-fsip-dos
Cisco Nexus 3000 Series Switch	cisco-sa-20190828-nxos-fsip-dos
Cisco NX-OS Software	cisco-sa-20190828-nxos-fsip-dos
Cisco MDS 9000 Multilayer Directors and Fabric Switches	cisco-sa-20190828-nxos-fsip-dos