CVE-2019-1900

Name of the Vulnerable Software and Affected Versions Cisco Integrated Management Controller (affected versions not specified)

Description The issue is caused by insufficient validation of user-supplied input on the web interface, allowing a remote attacker to cause a denial of service (DoS) condition by submitting a crafted HTTP request to certain endpoints. This could cause the web server process to crash. Physical access to the device may be required for a restart.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.