CVE-2019-1832
5.8MEDIUMA vulnerability in the detection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies. The vulnerability
Published: 5/16/2019Updated: 11/26/2024
Description
A vulnerability in the detection engine of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured access control policies. The vulnerability is due to improper validation of ICMP packets. An attacker could exploit this vulnerability by sending crafted ICMP packets to the affected device. A successful exploit could allow the attacker to bypass configured access control policies.
AI AnalysisPowered by AI
Affected Products
ciscosecure_firewall_management_center
6.2.0
ciscosecure_firewall_management_center
6.2.0.5
ciscosecure_firewall_management_center
6.2.3
ciscosecure_firewall_management_center
6.2.3.1
ciscosecure_firewall_management_center
6.2.3.2
ciscosecure_firewall_management_center
6.4.0
References
- http://www.securityfocus.com/bid/108340Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-ftdde-poly-bypassVendor Advisory
- http://www.securityfocus.com/bid/108340Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190515-ftdde-poly-bypassVendor Advisory