#VU21629 Resource exhaustion in Cisco Secure Firewall Management Center (formerly Firepower Management Center, FMC) and Cisco Firepower 9300 Security Appliance - CVE-2019-12700

Cybersecurity Help s.r.o.

Published: 2019-10-08

Vulnerability identifier: #VU21629

Vulnerability risk: Medium

CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]

CVE-ID: CVE-2019-12700

CWE-ID: CWE-400

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Cisco Secure Firewall Management Center (formerly Firepower Management Center, FMC)
Client/Desktop applications / Antivirus software/Personal firewalls
Cisco Firepower 9300 Security Appliance
Hardware solutions / Security hardware applicances

Vendor: Cisco Systems, Inc

Description

The vulnerability allows a remote attacker to perform a denial of service (DoS) attack.

The vulnerability exists due to improper resource management in the context of user session management. A remote authenticated attacker can connect to an affected system, perform many simultaneous successful Secure Shell (SSH) logins, trigger resource exhaustion and perform a denial of service (DoS) attack.

Mitigation
Install updates from vendor's website.

Vulnerable software versions

Cisco Secure Firewall Management Center (formerly Firepower Management Center, FMC): 6.2.2 - 6.2.3

Cisco Firepower 9300 Security Appliance: before 2.2.2.120

External links
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-fpmc-dos

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.

Latest bulletins with this vulnerability

Resource exhaustion in Cisco Firepower Management Center and Firepower 9300 Security Appliance