CVE-2019-1690

Name of the Vulnerable Software and Affected Versions Cisco Application Policy Infrastructure Controller versions prior to 4.2(0.21c)

Description The issue is related to insufficient access control when connecting via IPv6, which could allow an attacker to gain unauthorized access to the device. This is due to a lack of proper access control mechanisms for IPv6 link-local connectivity imposed on the management interface of an affected device. An attacker on the same physical network could exploit this by attempting to connect to the IPv6 link-local address on the affected device, potentially bypassing default access control restrictions.

Recommendations For versions prior to 4.2(0.21c), update to version 4.2(0.21c) or later to resolve the issue. As a temporary workaround, consider restricting access to the management interface to minimize the risk of exploitation.