Vulnerabilities > CVE-2019-12700 - Unspecified vulnerability in Cisco products

047910
CVSS 6.5 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
LOW
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
cisco
nessus

Summary

A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. An attacker could exploit this vulnerability by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins. A successful exploit could allow the attacker to exhaust system resources and cause the device to reload, resulting in a DoS condition. To exploit this vulnerability, the attacker needs valid user credentials on the system.

Vulnerable Configurations

Part Description Count
OS
Cisco
3
Hardware
Cisco
3
Application
Cisco
149

Nessus

  • NASL familyCISCO
    NASL idCISCO-SA-20191002-FTD.NASL
    descriptionAccording to its self-reported version, Cisco Firepower Threat Defense (FTD) Software is affected by a vulnerability in the configuration of the Pluggable Authentication Module (PAM) due to improper resource management in the context of user session management. An authenticated, remote attacker can exploit this, by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins, in order to exhaust system resources and cause a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information.
    last seen2020-03-17
    modified2020-03-13
    plugin id134449
    published2020-03-13
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134449
    titleCisco FTD Software Pluggable Authentication Module DoS (cisco-sa-20191002-ftd-fpmc-dos)
  • NASL familyCISCO
    NASL idCISCO-SA-20191002-FMC.NASL
    descriptionAccording to its self-reported version, Cisco Firepower Management Center (FMC) Software is affected by a vulnerability in the configuration of the Pluggable Authentication Module (PAM) due to improper resource management in the context of user session management. An authenticated, remote attacker can exploit this, by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins, in order to exhaust system resources and cause a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information.
    last seen2020-03-17
    modified2020-03-13
    plugin id134448
    published2020-03-13
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134448
    titleCisco FMC Software Pluggable Authentication Module DoS (cisco-sa-20191002-ftd-fpmc-dos)
  • NASL familyCISCO
    NASL idCISCO-SA-20191002-FXOS.NASL
    descriptionAccording to its self-reported version, Cisco FXOS Software is affected by a vulnerability in the configuration of the Pluggable Authentication Module (PAM) due to improper resource management in the context of user session management. An authenticated, remote attacker can exploit this, by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins, in order to exhaust system resources and cause a denial of service (DoS) condition. Please see the included Cisco BIDs and Cisco Security Advisory for more information.
    last seen2020-03-17
    modified2020-03-13
    plugin id134450
    published2020-03-13
    reporterThis script is Copyright (C) 2020 and is owned by Tenable, Inc. or an Affiliate thereof.
    sourcehttps://www.tenable.com/plugins/nessus/134450
    titleCisco FXOS Software Pluggable Authentication Module DoS (cisco-sa-20191002-ftd-fpmc-dos)