CVE-2019-1858

Name of the Vulnerable Software and Affected Versions Cisco FXOS Software (affected versions not specified) Cisco NX-OS Software (affected versions not specified)

Description A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor could allow an unauthenticated, remote attacker to cause the SNMP application to leak system memory, leading to an affected device restarting unexpectedly. The issue is due to improper error handling when processing inbound SNMP packets. An attacker could exploit this by sending multiple crafted SNMP packets to an affected device, causing the SNMP application to leak system memory over time. This could result in the SNMP application restarting multiple times, leading to a system-level restart and a denial of service (DoS) condition.

Recommendations For Cisco FXOS Software, update to a version that includes the fix for this issue. For Cisco NX-OS Software, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the SNMP application to minimize the risk of exploitation.