Vulnerabilities > CVE-2019-12700 - Unspecified vulnerability in Cisco products
Attack vector
NETWORK Attack complexity
LOW Privileges required
LOW Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. An attacker could exploit this vulnerability by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins. A successful exploit could allow the attacker to exhaust system resources and cause the device to reload, resulting in a DoS condition. To exploit this vulnerability, the attacker needs valid user credentials on the system.
Vulnerable Configurations
Nessus
NASL family CISCO NASL id CISCO-SA-20191002-FTD.NASL description According to its self-reported version, Cisco Firepower Threat Defense (FTD) Software is affected by a vulnerability in the configuration of the Pluggable Authentication Module (PAM) due to improper resource management in the context of user session management. An authenticated, remote attacker can exploit this, by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins, in order to exhaust system resources and cause a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information. last seen 2020-03-17 modified 2020-03-13 plugin id 134449 published 2020-03-13 reporter This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/134449 title Cisco FTD Software Pluggable Authentication Module DoS (cisco-sa-20191002-ftd-fpmc-dos) NASL family CISCO NASL id CISCO-SA-20191002-FMC.NASL description According to its self-reported version, Cisco Firepower Management Center (FMC) Software is affected by a vulnerability in the configuration of the Pluggable Authentication Module (PAM) due to improper resource management in the context of user session management. An authenticated, remote attacker can exploit this, by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins, in order to exhaust system resources and cause a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information. last seen 2020-03-17 modified 2020-03-13 plugin id 134448 published 2020-03-13 reporter This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/134448 title Cisco FMC Software Pluggable Authentication Module DoS (cisco-sa-20191002-ftd-fpmc-dos) NASL family CISCO NASL id CISCO-SA-20191002-FXOS.NASL description According to its self-reported version, Cisco FXOS Software is affected by a vulnerability in the configuration of the Pluggable Authentication Module (PAM) due to improper resource management in the context of user session management. An authenticated, remote attacker can exploit this, by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins, in order to exhaust system resources and cause a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information. last seen 2020-03-17 modified 2020-03-13 plugin id 134450 published 2020-03-13 reporter This script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof. source https://www.tenable.com/plugins/nessus/134450 title Cisco FXOS Software Pluggable Authentication Module DoS (cisco-sa-20191002-ftd-fpmc-dos)