CVE-2019-1695
MEDIUMCisco ASA <9.8.4, 9.9-9.9.2.50 & FTD 6.2.1-6.2.3.12 - Unauthenticated Kernel Data Injection
Title source: llmDescription
A vulnerability in the detection engine of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, adjacent attacker to send data directly to the kernel of an affected device. The vulnerability exists because the software improperly filters Ethernet frames sent to an affected device. An attacker could exploit this vulnerability by sending crafted packets to the management interface of an affected device. A successful exploit could allow the attacker to bypass the Layer 2 (L2) filters and send data directly to the kernel of the affected device. A malicious frame successfully delivered would make the target device generate a specific syslog entry.
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_cisco
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190501-asa-ftd-bypass
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/108173
Scores
CVSS v3
6.5
EPSS
0.0071
EPSS Percentile
48.8%
Attack Vector
ADJACENT_NETWORK
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
CISA SSVC
Vulnrichment
Exploitation
none
Automatable
no
Technical Impact
partial
Details
CWE
CWE-284
Status
published
Products (3)
cisco/adaptive_security_appliance_software
< 9.8.4
cisco/adaptive_security_appliance_software
9.9 - 9.9.2.50
cisco/firepower_threat_defense
6.2.1 - 6.2.3.12
Published
May 03, 2019
Tracked Since
Feb 18, 2026