CVE-2019-12659
Cisco IOS XE Software HTTP Server Denial of Service Vulnerability
A vulnerability in the HTTP server code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the HTTP server to crash. The vulnerability is due to a logical error in the logging mechanism. An attacker could exploit this vulnerability by generating a high amount of long-lived connections to the HTTP service on the device. A successful exploit could allow the attacker to cause the HTTP server to crash.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Productos afectados
Cisco · Cisco IOS XE Software 3.2.0JA¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →