CVE-2019-1806

Name of the Vulnerable Software and Affected Versions Cisco Small Business Sx200, Sx300, Sx500, ESW2 Series Managed Switches and Small Business Sx250, Sx350, Sx550 Series Switches (affected versions not specified)

Description A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor could allow an authenticated, remote attacker to cause the SNMP application of an affected device to cease processing traffic, resulting in the CPU utilization reaching one hundred percent. This is due to improper validation of SNMP protocol data units (PDUs) in SNMP packets. An attacker could exploit this vulnerability by sending a malicious SNMP packet to an affected device, potentially causing the device to cease forwarding traffic and resulting in a denial of service (DoS) condition.

Recommendations For Cisco Small Business Sx200, Sx300, Sx500, ESW2 Series Managed Switches and Small Business Sx250, Sx350, Sx550 Series Switches, update to the latest firmware to address this vulnerability. As a temporary workaround, consider restricting access to the SNMP protocol to minimize the risk of exploitation.