What is CVE-2019-1858?

CVE-2019-1858 is a high-severity vulnerability in Cisco Firepower Extensible Operating System (Fxos), classified under Improper Input Validation. CVSS score: 8.6/10. Published 2019-05-16.

How severe is CVE-2019-1858?

High severity. CVSS v3 base score is 8.6 out of 10.

Improper input validation in Cisco Firepower Extensible Operating System (Fxos)

CVE-2019-1858

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause the SNMP application to leak system memory, wh…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.024 (85.4th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.6 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H.

Affected products

Cisco Firepower Extensible Operating System (Fxos) — versions unspecified

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

20190515 Cisco FXOS and NX-OS Software Simple Network Management Protocol Denial of Service Vulnerability (vendor-advisory, x_refsource_CISCO)
108358 (vdb-entry, x_refsource_BID)

Frequently asked questions

What is CVE-2019-1858?: CVE-2019-1858 is a high-severity vulnerability in Cisco Firepower Extensible Operating System (Fxos), classified under Improper Input Validation. CVSS score: 8.6/10. Published 2019-05-16.
How severe is CVE-2019-1858?: High severity. CVSS v3 base score is 8.6 out of 10.