CVE-2019-1703

Name of the Vulnerable Software and Affected Versions Cisco Firepower Threat Defense (FTD) Software for the Cisco Firepower 2100 Series (affected versions not specified)

Description A logic error in the internal packet-processing functionality could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of service (DoS) condition. The vulnerability may prevent ingress buffers from being replenished under specific traffic conditions. An attacker could exploit this by sending a series of crafted packets to an affected device, consuming all input buffers and leading to a queue wedge condition in all active interfaces. This situation would cause an affected device to stop processing any incoming traffic and result in a DoS condition until the device is reloaded manually.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.