CVE-2019-12693

Name of the Vulnerable Software and Affected Versions Cisco Adaptive Security Appliance (ASA) Software (affected versions not specified)

Description A vulnerability in the Secure Copy (SCP) feature could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The issue is due to the use of an incorrect data type for a length variable. An attacker could exploit this by initiating the transfer of a large file to an affected device via SCP, requiring valid privilege level 15 credentials. A successful exploit could cause the length variable to roll over, leading to a device crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.