CVE-2019-12663

{"id": "CVE-2019-12663", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "[email protected]", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 6.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "HIGH", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.2}], "cvssMetricV31": [{"type": "Primary", "source": "[email protected]", "cvssData": {"scope": "CHANGED", "version": "3.1", "baseScore": 8.6, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 3.9}]}, "published": "2019-09-25T21:15:11.267", "references": [{"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-ctspac-dos", "tags": ["Vendor Advisory"], "source": "[email protected]"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-ctspac-dos", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-20"}]}, {"type": "Primary", "source": "[email protected]", "description": [{"lang": "en", "value": "CWE-20"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Cisco TrustSec (CTS) Protected Access Credential (PAC) provisioning module of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to improper validation of attributes in RADIUS messages. An attacker could exploit this vulnerability by sending a malicious RADIUS message to an affected device while the device is in a specific state."}, {"lang": "es", "value": "Una vulnerabilidad en el m\u00f3dulo de aprovisionamiento Cisco TrustSec (CTS) Protected Access Credential (PAC) del software Cisco IOS XE, podr\u00eda permitir a un atacante remoto no autenticado causar una recarga de un dispositivo afectado, resultando en una condici\u00f3n de denegaci\u00f3n de servicio (DoS). La vulnerabilidad es debido a la comprobaci\u00f3n inapropiada de atributos en los mensajes RADIUS. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de un mensaje RADIUS malicioso hacia un dispositivo afectado mientras el dispositivo se encuentra en un estado espec\u00edfico."}], "lastModified": "2024-11-21T04:23:18.320", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xe:16.6.4:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "65020120-491D-46CD-8C73-974B6F4C11E6"}, {"criteria": "cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "C98DED36-D4B5-48D6-964E-EEEE97936700"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:catalyst_9300-24p-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3765B3DB-8B1B-46EF-AF7D-ED1EB2079C3A"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24p-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "74AED057-2458-4DE0-8D51-ABD766D07F68"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24s-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "19538C03-5FB8-4401-8B21-489C629D7E7D"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24s-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B26D7061-F471-4DF0-A892-ED132958B84A"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24t-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "033ED443-80E7-4012-9825-07AAC0D44B96"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24t-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AD3F3CC6-A349-47B1-B282-B6458683C191"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24u-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CB24EF21-1C10-48A7-BC68-FFC842A28D12"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24u-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ED0625A2-BF14-4552-83D8-AEE0A04EA023"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24ux-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CD0D6ED6-AE64-4E20-B9CD-3EAA22709CFF"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-24ux-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "21AFDC0D-7629-424E-827B-C8A8767324C3"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48p-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A263CFF2-A659-405B-90EA-51E49B25C6D3"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48p-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CEFBD449-217D-4569-99F7-D56B853A3E07"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48s-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7ED668FC-D1A5-4175-A234-23760BA6E788"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48s-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0D650C48-9241-42F7-87A9-20733329489A"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48t-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3ED16A65-9AFF-4825-95D1-162FBA0F566D"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48t-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "82D345E7-8208-41AC-B11A-4425D29E98A1"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48u-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E386D461-F1C1-4970-B056-D6119E74D449"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48u-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "99F3A466-F665-4132-ABC4-2DFC0A7E2B55"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48un-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3395168-FF2E-4CB6-AABE-5E36DEB241CA"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48un-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5F525CBC-1CE6-4CAB-B1C1-DFA7EA462EF0"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48uxm-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "226F985C-4669-4D0A-9DB4-CB1465B37B02"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300-48uxm-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0B736A43-6F4E-40A9-84E4-D9E251489234"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24p-4g-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "26437DA7-2EFE-4CA2-8DB0-9FECBEFAE4EA"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24p-4g-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E99CA124-7D86-463B-A31E-A7836B7493E6"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24p-4x-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E014B028-8DD9-428C-B705-8F428F145932"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24p-4x-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A6C44229-A842-49B2-AD3E-79C83DB63EBE"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24t-4g-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5D56D21F-0F55-4AB1-AB9B-8EAE08F4BEDA"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24t-4g-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D3C0441D-A7AC-4B4E-970A-3A441C2F66B0"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24t-4x-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5306E847-C718-4C83-9C97-8AB498DC4A88"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-24t-4x-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "18287CEF-B574-4498-A256-567CA6E6CA7C"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48p-4g-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1E9AAA2C-495E-4FD1-9050-264FDC25254B"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48p-4g-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5713043E-2535-4540-B3EF-41FAC40BECE9"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48p-4x-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0C0C18E5-45B9-49D2-A4AB-DD8D5CB04C5C"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48p-4x-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "67701D77-8B03-446A-AE22-4B8CCCD6F029"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48t-4g-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5B0BEAE3-2056-4B7B-8D7C-AEE3DC86CC2A"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48t-4g-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "831A2390-7170-4FC0-A95E-3DAB1791017D"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48t-4x-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F788CBC4-782F-4A43-AC80-4AEF1C43A22D"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l-48t-4x-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "493989DC-8F1B-45C9-AD11-38B97B958C9C"}, {"criteria": "cpe:2.3:h:cisco:catalyst_9300l_stack:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "419ABFB5-2C27-4EBE-98EF-8A8B718CD1F9"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-12q-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7D09786E-BB71-4ECA-878A-2CD33EE2DFF2"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-12q-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "32A2AD4E-27B8-4022-90D5-34DA597B55E1"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-16x-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F69531D5-09B2-407D-8361-2FD7C93FF841"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-16x-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DB3D5CED-76D9-4A9C-8FD2-34DDED24E714"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-24q-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AC50F73C-5026-44E0-AE29-E8AD3A112FC6"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-24q-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24FF0D66-D25B-4240-883D-8B02B17DB1A8"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-40x-a:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "45233420-4380-4D64-B46D-D400A7224CA5"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c9500-40x-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7925AF68-4E36-4281-A710-070DD4BEDA8B"}, {"criteria": "cpe:2.3:h:cisco:cbr-8_converged_broadband_router:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D6CCBE67-E509-43EC-9AFB-8A9B6A115126"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}