CVE-2019-1981

MEDIUM

Cisco Firepower Threat Defense/ASA/FMC Unauthenticated Filter Bypass via Obfuscated Payload

Title source: llm
STIX 2.1

Description

A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to insufficient normalization of a text-based payload. An attacker could exploit this vulnerability by sending traffic that contains specifically obfuscated payloads through an affected device. An exploit could allow the attacker to bypass filtering and deliver malicious payloads to protected systems that would otherwise be blocked.

References (1)

Core 1
Core References

Scores

CVSS v3 5.8
EPSS 0.0104
EPSS Percentile 59.8%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-20 CWE-264
Status published
Products (5)
cisco/firepower_services_software_for_asa
cisco/firepower_threat_defense
cisco/secure_firewall_management_center 2.9.15
cisco/secure_firewall_management_center 2.9.16
cisco/secure_firewall_management_center 2.9.12 - 2.9.12.15
Published Nov 05, 2019
Tracked Since Feb 18, 2026