CVE-2019-12697 - Vulnerability Details

CVE-2019-12697 - Cisco Firepower System Software Detection Engine RTF and RAR Malware and File Policy Bypass Vulnerabilities

Multiple vulnerabilities in the Cisco Firepower System Software Detection Engine could allow an unauthenticated, remote attacker to bypass configured Malware and File Policies for RTF and RAR file types. For more information about these vulnerabilities, see the Details section of this advisory.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

This CVE is not in the KEV list.

Exploitation none

Automatable yes

Technical Impact partial

Vendors	Products
Cisco	Asa 5500-x Firepower Firepower 1010 Firepower 1120 Firepower 1140 Firepower 2110 Firepower 2120 Firepower 2130 Firepower 2140 Firepower 4110 Firepower 4115 Firepower 4120 Firepower 4125 Firepower 4140 Firepower 4145 Firepower 4150 Firepower 7000 Firepower 8000 Firepower 9300 Firepower Threat Defense For Isr Ftd Virtual Isa 3000 Ngipsv For Vmware

Configuration 1 [-]

AND

OR	cpe:2.3:a:cisco:firepower:6.2.3.1:::::::*
	cpe:2.3:a:cisco:firepower:6.2.3.7:::::::*
	cpe:2.3:a:cisco:firepower:6.3.0:::::::*
	cpe:2.3:a:cisco:firepower:6.4.0:::::::*

OR	cpe:2.3:h:cisco:asa_5500-x:-:::::::*
	cpe:2.3:h:cisco:firepower_1010:-:::::::*
	cpe:2.3:h:cisco:firepower_1120:-:::::::*
	cpe:2.3:h:cisco:firepower_1140:-:::::::*
	cpe:2.3:h:cisco:firepower_2110:-:::::::*
	cpe:2.3:h:cisco:firepower_2120:-:::::::*
	cpe:2.3:h:cisco:firepower_2130:-:::::::*
	cpe:2.3:h:cisco:firepower_2140:-:::::::*
	cpe:2.3:h:cisco:firepower_4110:-:::::::*
	cpe:2.3:h:cisco:firepower_4115:-:::::::*
	cpe:2.3:h:cisco:firepower_4120:-:::::::*
	cpe:2.3:h:cisco:firepower_4125:-:::::::*
	cpe:2.3:h:cisco:firepower_4140:-:::::::*
	cpe:2.3:h:cisco:firepower_4145:-:::::::*
	cpe:2.3:h:cisco:firepower_4150:-:::::::*
	cpe:2.3:h:cisco:firepower_7000:-:::::::*
	cpe:2.3:h:cisco:firepower_8000:-:::::::*
	cpe:2.3:h:cisco:firepower_9300:-:::::::*
	cpe:2.3:h:cisco:firepower_threat_defense_for_isr:-:::::::*
	cpe:2.3:h:cisco:ftd_virtual:-:::::::*
	cpe:2.3:h:cisco:isa_3000:-:::::::*
	cpe:2.3:h:cisco:ngipsv_for_vmware:-:::::::*

No data.

References

Link	Providers
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-firepwr-bypass

History

Tue, 19 Nov 2024 19:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2019-10-02T19:06:48.250257Z

Updated: 2024-11-19T18:54:09.036Z

Reserved: 2019-06-04T00:00:00

Link: CVE-2019-12697

Vulnrichment

Updated: 2024-08-04T23:24:39.235Z

NVD

Status : Modified

Published: 2019-10-02T19:15:13.593

Modified: 2024-11-21T04:23:23.040

Link: CVE-2019-12697

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact Low

Availability Impact None

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

Exploitation none

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object