CVE-2019-12652

Name of the Vulnerable Software and Affected Versions Cisco IOS Software for Cisco Catalyst 4000 Series Switches (affected versions not specified)

Description The issue is related to improper resource allocation when processing TCP packets directed to the device on specific Cisco Catalyst 4000 Series Switches. An attacker could exploit this by sending crafted TCP streams to an affected device, causing it to run out of buffer resources. This impairs operations of control plane and management plane protocols, resulting in a denial of service (DoS) condition. The vulnerability can be triggered only by traffic destined to an affected device and cannot be exploited using traffic that transits an affected device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.