CVE-2019-1690

A vulnerability in the management interface of Cisco Application Policy Infrastructure Controller (APIC) software could allow an unauthenticated, adjacent attacker to gain unauthorized access on an affected device. The vulnerability is due to a lack of proper access control mechanisms for IPv6 link-local connectivity imposed on the management interface of an affected device. An attacker on the same physical network could exploit this vulnerability by attempting to connect to the IPv6 link-local address on the affected device. A successful exploit could allow the attacker to bypass default access control restrictions on an affected device. Cisco Application Policy Infrastructure Controller (APIC) devices running versions prior to 4.2(0.21c) are affected.

CVSS v3 6.5 MEDIUM
CVSS v2.0 3.3 LOW

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

3.3^/10

CVSS v2.0 : LOW

V2 Legend

Vector : AV:A/AC:L/Au:N/C:N/I:P/A:N

Exploitability : 6.5 / Impact : 2.9

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

References

Link	Resource
http://www.securityfocus.com/bid/107317	Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-apic-ipv6	Vendor Advisory
http://www.securityfocus.com/bid/107317	Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-apic-ipv6	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:a:cisco:application_policy_infrastructure_controller:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:firepower_2110:-:::::::*
	cpe:2.3:h:cisco:firepower_2120:-:::::::*
	cpe:2.3:h:cisco:firepower_2130:-:::::::*
	cpe:2.3:h:cisco:firepower_2140:-:::::::*
	cpe:2.3:h:cisco:firepower_4110:-:::::::*
	cpe:2.3:h:cisco:firepower_4112:-:::::::*
	cpe:2.3:h:cisco:firepower_4115:-:::::::*
	cpe:2.3:h:cisco:firepower_4120:-:::::::*
	cpe:2.3:h:cisco:firepower_4125:-:::::::*
	cpe:2.3:h:cisco:firepower_4140:-:::::::*
	cpe:2.3:h:cisco:firepower_4145:-:::::::*
	cpe:2.3:h:cisco:firepower_4150:-:::::::*
	cpe:2.3:h:cisco:firepower_9300:-:::::::*
	cpe:2.3:h:cisco:mds_9100:-:::::::*
	cpe:2.3:h:cisco:mds_9134:-:::::::*
	cpe:2.3:h:cisco:mds_9509:-:::::::*
	cpe:2.3:h:cisco:mds_9710:-:::::::*
	cpe:2.3:h:cisco:nexus_3016:-:::::::*
	cpe:2.3:h:cisco:nexus_3048:-:::::::*
	cpe:2.3:h:cisco:nexus_3064:-:::::::*
	cpe:2.3:h:cisco:nexus_3064-t:-:::::::*
	cpe:2.3:h:cisco:nexus_31108pc-v:-:::::::*
	cpe:2.3:h:cisco:nexus_31108tc-v:-:::::::*
	cpe:2.3:h:cisco:nexus_31128pq:-:::::::*
	cpe:2.3:h:cisco:nexus_3132c-z:-:::::::*
	cpe:2.3:h:cisco:nexus_3132q:-:::::::*
	cpe:2.3:h:cisco:nexus_3132q-v:-:::::::*
	cpe:2.3:h:cisco:nexus_3132q-xl:-:::::::*
	cpe:2.3:h:cisco:nexus_3164q:-:::::::*
	cpe:2.3:h:cisco:nexus_3172:-:::::::*
	cpe:2.3:h:cisco:nexus_3172pq-xl:-:::::::*
	cpe:2.3:h:cisco:nexus_3172tq:-:::::::*
	cpe:2.3:h:cisco:nexus_3172tq-32t:-:::::::*
	cpe:2.3:h:cisco:nexus_3172tq-xl:-:::::::*
	cpe:2.3:h:cisco:nexus_3232c:-:::::::*
	cpe:2.3:h:cisco:nexus_3264c-e:-:::::::*
	cpe:2.3:h:cisco:nexus_3264q:-:::::::*
	cpe:2.3:h:cisco:nexus_3408-s:-:::::::*
	cpe:2.3:h:cisco:nexus_34180yc:-:::::::*
	cpe:2.3:h:cisco:nexus_3432d-s:-:::::::*
	cpe:2.3:h:cisco:nexus_3464c:-:::::::*
	cpe:2.3:h:cisco:nexus_3524:-:::::::*
	cpe:2.3:h:cisco:nexus_3524-x:-:::::::*
	cpe:2.3:h:cisco:nexus_3524-xl:-:::::::*
	cpe:2.3:h:cisco:nexus_3548:-:::::::*
	cpe:2.3:h:cisco:nexus_3548-x:-:::::::*
	cpe:2.3:h:cisco:nexus_3548-xl:-:::::::*
	cpe:2.3:h:cisco:nexus_36180yc-r:-:::::::*
	cpe:2.3:h:cisco:nexus_3636c-r:-:::::::*
	cpe:2.3:h:cisco:nexus_5010:-:::::::*
	cpe:2.3:h:cisco:nexus_5020:-:::::::*
	cpe:2.3:h:cisco:nexus_5548p:-:::::::*
	cpe:2.3:h:cisco:nexus_5548up:-:::::::*
	cpe:2.3:h:cisco:nexus_5596t:-:::::::*
	cpe:2.3:h:cisco:nexus_5596up:-:::::::*
	cpe:2.3:h:cisco:nexus_56128p:-:::::::*
	cpe:2.3:h:cisco:nexus_5624q:-:::::::*
	cpe:2.3:h:cisco:nexus_5648q:-:::::::*
	cpe:2.3:h:cisco:nexus_5672up:-:::::::*
	cpe:2.3:h:cisco:nexus_5696q:-:::::::*
	cpe:2.3:h:cisco:nexus_7000:-:::::::*
	cpe:2.3:h:cisco:nexus_7700:-:::::::*
	cpe:2.3:h:cisco:nexus_9000v:-:::::::*
	cpe:2.3:h:cisco:nexus_92160yc-x:-:::::::*
cpe:2.3:h:cisco:nexus_92300yc:-:::::::*
cpe:2.3:h:cisco:nexus_92304qc:-:::::::*
cpe:2.3:h:cisco:nexus_92348gc-x:-:::::::*
cpe:2.3:h:cisco:nexus_9236c:-:::::::*
cpe:2.3:h:cisco:nexus_9272q:-:::::::*
cpe:2.3:h:cisco:nexus_93108tc-ex:-:::::::*
cpe:2.3:h:cisco:nexus_93108tc-fx:-:::::::*
cpe:2.3:h:cisco:nexus_93120tx:-:::::::*
cpe:2.3:h:cisco:nexus_93128tx:-:::::::*
cpe:2.3:h:cisco:nexus_93180lc-ex:-:::::::*
cpe:2.3:h:cisco:nexus_93180yc-ex:-:::::::*
cpe:2.3:h:cisco:nexus_93180yc-fx:-:::::::*
cpe:2.3:h:cisco:nexus_93216tc-fx2:-:::::::*
cpe:2.3:h:cisco:nexus_93240yc-fx2:-:::::::*
cpe:2.3:h:cisco:nexus_9332c:-:::::::*
cpe:2.3:h:cisco:nexus_9332pq:-:::::::*
cpe:2.3:h:cisco:nexus_93360yc-fx2:-:::::::*
cpe:2.3:h:cisco:nexus_9336c-fx2:-:::::::*
cpe:2.3:h:cisco:nexus_9336pq_aci_spine:-:::::::*
cpe:2.3:h:cisco:nexus_9348gc-fxp:-:::::::*
cpe:2.3:h:cisco:nexus_9364c:-:::::::*
cpe:2.3:h:cisco:nexus_9372px:-:::::::*
cpe:2.3:h:cisco:nexus_9372px-e:-:::::::*
cpe:2.3:h:cisco:nexus_9372tx:-:::::::*
cpe:2.3:h:cisco:nexus_9372tx-e:-:::::::*
cpe:2.3:h:cisco:nexus_9396px:-:::::::*
cpe:2.3:h:cisco:nexus_9396tx:-:::::::*
cpe:2.3:h:cisco:nexus_9504:-:::::::*
cpe:2.3:h:cisco:nexus_9508:-:::::::*
cpe:2.3:h:cisco:nexus_9516:-:::::::*
cpe:2.3:h:cisco:ucs_6248up:-:::::::*
cpe:2.3:h:cisco:ucs_6296up:-:::::::*
cpe:2.3:h:cisco:ucs_6324:-:::::::*
cpe:2.3:h:cisco:ucs_6332:-:::::::*
cpe:2.3:h:cisco:ucs_6400:-:::::::*

History

21 Nov 2024, 04:37

Type	Values Removed	Values Added
References	~~() http://www.securityfocus.com/bid/107317 - Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/bid/107317 - Third Party Advisory, VDB Entry
References	~~() https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-apic-ipv6 - Vendor Advisory~~	() https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-apic-ipv6 - Vendor Advisory

Information

Published : 2019-03-11 21:29

Updated : 2024-11-21 04:37

NVD link : CVE-2019-1690

Mitre link : CVE-2019-1690

CVE.ORG link : CVE-2019-1690

JSON object : View

Products Affected

cisco

nexus_3524-xl
ucs_6332
nexus_9236c
firepower_4140
nexus_3232c
nexus_31128pq
nexus_93128tx
nexus_93108tc-fx
firepower_2130
nexus_93180yc-ex
nexus_93108tc-ex
nexus_7700
nexus_93360yc-fx2
nexus_3172tq-xl
nexus_3548-x
nexus_5596up
nexus_9372px-e
mds_9710
firepower_9300
nexus_3264c-e
nexus_5696q
nexus_31108tc-v
mds_9134
nexus_5596t
nexus_3172tq-32t
nexus_5010
nexus_3172tq
nexus_9508
nexus_92300yc
application_policy_infrastructure_controller
nexus_9364c
nexus_3548
nexus_3132q-v
nexus_9000v
firepower_2110
nexus_5648q
nexus_9332pq
nexus_3432d-s
firepower_4115
nexus_9396px
nexus_3132q-xl
nexus_92304qc
firepower_4125
nexus_93180yc-fx
nexus_9396tx
nexus_9372px
nexus_3464c
nexus_3264q
nexus_5624q
mds_9509
nexus_93120tx
nexus_3164q
ucs_6324
nexus_9272q
nexus_31108pc-v
nexus_3408-s
firepower_2140
nexus_3064
nexus_3064-t
firepower_4112
nexus_3016
nexus_5672up
nexus_92348gc-x
nexus_3524-x
nexus_9332c
nexus_9372tx-e
nexus_3636c-r
nexus_3548-xl
firepower_4145
nexus_9504
nexus_34180yc
nexus_3172pq-xl
nexus_9516
nexus_7000
nexus_5548up
mds_9100
nexus_36180yc-r
nexus_9372tx
nexus_3132c-z
nexus_93216tc-fx2
ucs_6400
firepower_2120
nexus_5020
nexus_93240yc-fx2
nexus_9348gc-fxp
firepower_4120
nexus_9336c-fx2
firepower_4110
nexus_56128p
nexus_93180lc-ex
nexus_3172
nexus_3048
nexus_3524
nexus_5548p
nexus_92160yc-x
ucs_6248up
nexus_9336pq_aci_spine
firepower_4150
ucs_6296up
nexus_3132q

CWE

CWE-284

Improper Access Control

NVD-CWE-Other

{"id": "CVE-2019-1690", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 3.3, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "LOW", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Secondary", "source": "ykramarz@cisco.com", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 4.3, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 2.8}], "cvssMetricV31": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 6.5, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 2.8}]}, "published": "2019-03-11T21:29:01.090", "references": [{"url": "http://www.securityfocus.com/bid/107317", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-apic-ipv6", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securityfocus.com/bid/107317", "tags": ["Third Party Advisory", "VDB Entry"], "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190306-apic-ipv6", "tags": ["Vendor Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-284"}]}, {"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the management interface of Cisco Application Policy Infrastructure Controller (APIC) software could allow an unauthenticated, adjacent attacker to gain unauthorized access on an affected device. The vulnerability is due to a lack of proper access control mechanisms for IPv6 link-local connectivity imposed on the management interface of an affected device. An attacker on the same physical network could exploit this vulnerability by attempting to connect to the IPv6 link-local address on the affected device. A successful exploit could allow the attacker to bypass default access control restrictions on an affected device. Cisco Application Policy Infrastructure Controller (APIC) devices running versions prior to 4.2(0.21c) are affected."}, {"lang": "es", "value": "Una vulnerabilidad en la interfaz de gesti\u00f3n del software de Cisco Application Policy Infrastructure Controller (APIC) podr\u00eda permitir a un atacante adyacente sin autenticar obtener acceso no autorizado a un dispositivo afectado. La vulnerabilidad se debe a una falta de mecanismos de control de acceso adecuados para la conectividad IPv6 (link-local) que se impone en la interfaz de gesti\u00f3n de un dispositivo afectado. Un atacante en la misma red f\u00edsica podr\u00eda explotar esta vulnerabilidad intentando conectarse a la direcci\u00f3n IPv6 (link local) en el dispositivo afectado. Un exploit exitoso podr\u00eda permitir al atacante omitir las restricciones de control de acceso en un dispositivo afectado. Los dispositivos de Cisco Application Policy Controller (APIC) en versiones anteriores a 4.2(0.21c) se ven afectados."}], "lastModified": "2024-11-21T04:37:06.480", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:application_policy_infrastructure_controller:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "980B41C7-4122-4D8B-9AAB-2D7BBBC5A7B3", "versionEndExcluding": "4.2\\(0.21c\\)"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:firepower_2110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "52D96810-5F79-4A83-B8CA-D015790FCF72"}, {"criteria": "cpe:2.3:h:cisco:firepower_2120:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "16FE2945-4975-4003-AE48-7E134E167A7F"}, {"criteria": "cpe:2.3:h:cisco:firepower_2130:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DCE7122A-5AA7-4ECD-B024-E27C9D0CFB7B"}, {"criteria": "cpe:2.3:h:cisco:firepower_2140:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "976901BF-C52C-4F81-956A-711AF8A60140"}, {"criteria": "cpe:2.3:h:cisco:firepower_4110:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A0CBC7F5-7767-43B6-9384-BE143FCDBD7F"}, {"criteria": "cpe:2.3:h:cisco:firepower_4112:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "957D64EB-D60E-4775-B9A8-B21CA48ED3B1"}, {"criteria": "cpe:2.3:h:cisco:firepower_4115:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A694AD51-9008-4AE6-8240-98B17AB527EE"}, {"criteria": "cpe:2.3:h:cisco:firepower_4120:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "38AE6DC0-2B03-4D36-9856-42530312CC46"}, {"criteria": "cpe:2.3:h:cisco:firepower_4125:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "71DCEF22-ED20-4330-8502-EC2DD4C9838F"}, {"criteria": "cpe:2.3:h:cisco:firepower_4140:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3DB2822B-B752-4CD9-A178-934957E306B4"}, {"criteria": "cpe:2.3:h:cisco:firepower_4145:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "81F4868A-6D62-479C-9C19-F9AABDBB6B24"}, {"criteria": "cpe:2.3:h:cisco:firepower_4150:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "65378F3A-777C-4AE2-87FB-1E7402F9EA1B"}, {"criteria": "cpe:2.3:h:cisco:firepower_9300:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "07DAFDDA-718B-4B69-A524-B0CEB80FE960"}, {"criteria": "cpe:2.3:h:cisco:mds_9100:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "54C0D908-D7BA-48C3-9963-14A3A32A2662"}, {"criteria": "cpe:2.3:h:cisco:mds_9134:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EDB00911-C0B0-4A4E-A0B9-413EC9D9C25A"}, {"criteria": "cpe:2.3:h:cisco:mds_9509:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C677D356-86C9-4491-A6CA-5E6306B2BB70"}, {"criteria": "cpe:2.3:h:cisco:mds_9710:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "36B3B617-7554-4C36-9B41-19AA3BD2F6E9"}, {"criteria": "cpe:2.3:h:cisco:nexus_3016:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "528ED62B-D739-4E06-AC64-B506FD73BBAB"}, {"criteria": "cpe:2.3:h:cisco:nexus_3048:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FC2A6C31-438A-4CF5-A3F3-364B1672EB7D"}, {"criteria": "cpe:2.3:h:cisco:nexus_3064:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "76C10D85-88AC-4A79-8866-BED88A0F8DF8"}, {"criteria": "cpe:2.3:h:cisco:nexus_3064-t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "65CB7F6D-A82B-4A31-BFAC-FF4A4B8DF9C1"}, {"criteria": "cpe:2.3:h:cisco:nexus_31108pc-v:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4E930332-CDDD-48D5-93BC-C22D693BBFA2"}, {"criteria": "cpe:2.3:h:cisco:nexus_31108tc-v:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7BF4B8FE-E134-4491-B5C2-C1CFEB64731B"}, {"criteria": "cpe:2.3:h:cisco:nexus_31128pq:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F4226DA0-9371-401C-8247-E6E636A116C3"}, {"criteria": "cpe:2.3:h:cisco:nexus_3132c-z:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7664666F-BCE4-4799-AEEA-3A73E6AD33F4"}, {"criteria": "cpe:2.3:h:cisco:nexus_3132q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D3DBBFE9-835C-4411-8492-6006E74BAC65"}, {"criteria": "cpe:2.3:h:cisco:nexus_3132q-v:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3293438-3D18-45A2-B093-2C3F65783336"}, {"criteria": "cpe:2.3:h:cisco:nexus_3132q-xl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8F43B770-D96C-44EA-BC12-9F39FC4317B9"}, {"criteria": "cpe:2.3:h:cisco:nexus_3164q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FA782EB3-E8E6-4DCF-B39C-B3CBD46E4384"}, {"criteria": "cpe:2.3:h:cisco:nexus_3172:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7817F4E6-B2DA-4F06-95A4-AF329F594C02"}, {"criteria": "cpe:2.3:h:cisco:nexus_3172pq-xl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7BB9DD73-E31D-4921-A6D6-E14E04703588"}, {"criteria": "cpe:2.3:h:cisco:nexus_3172tq:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4532F513-0543-4960-9877-01F23CA7BA1B"}, {"criteria": "cpe:2.3:h:cisco:nexus_3172tq-32t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0B43502B-FD53-465A-B60F-6A359C6ACD99"}, {"criteria": "cpe:2.3:h:cisco:nexus_3172tq-xl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F3229124-B097-4AAC-8ACD-2F9C89DCC3AB"}, {"criteria": "cpe:2.3:h:cisco:nexus_3232c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "652A2849-668D-4156-88FB-C19844A59F33"}, {"criteria": "cpe:2.3:h:cisco:nexus_3264c-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "24FBE87B-8A4F-43A8-98A3-4A7D9C630937"}, {"criteria": "cpe:2.3:h:cisco:nexus_3264q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "6ACD09AC-8B28-4ACB-967B-AB3D450BC137"}, {"criteria": "cpe:2.3:h:cisco:nexus_3408-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7D397349-CCC6-479B-9273-FB1FFF4F34F2"}, {"criteria": "cpe:2.3:h:cisco:nexus_34180yc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DC7286A7-780F-4A45-940A-4AD5C9D0F201"}, {"criteria": "cpe:2.3:h:cisco:nexus_3432d-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5F7AF8D7-431B-43CE-840F-CC0817D159C0"}, {"criteria": "cpe:2.3:h:cisco:nexus_3464c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DAC204C8-1A5A-4E85-824E-DC9B8F6A802D"}, {"criteria": "cpe:2.3:h:cisco:nexus_3524:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EAF5AF71-15DF-4151-A1CF-E138A7103FC8"}, {"criteria": "cpe:2.3:h:cisco:nexus_3524-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10F80A72-AD54-4699-B8AE-82715F0B58E2"}, {"criteria": "cpe:2.3:h:cisco:nexus_3524-xl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "9354B6A2-D7D6-442E-BF4C-FE8A336D9E94"}, {"criteria": "cpe:2.3:h:cisco:nexus_3548:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "088C0323-683A-44F5-8D42-FF6EC85D080E"}, {"criteria": "cpe:2.3:h:cisco:nexus_3548-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "74CB4002-7636-4382-B33E-FBA060A13C34"}, {"criteria": "cpe:2.3:h:cisco:nexus_3548-xl:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "10CEBF73-3EE0-459A-86C5-F8F6243FE27C"}, {"criteria": "cpe:2.3:h:cisco:nexus_36180yc-r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "95D2C4C3-65CE-4612-A027-AF70CEFC3233"}, {"criteria": "cpe:2.3:h:cisco:nexus_3636c-r:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "57572E4A-78D5-4D1A-938B-F05F01759612"}, {"criteria": "cpe:2.3:h:cisco:nexus_5010:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E275D31F-4FA1-428E-AB4A-D2802FF0CF1A"}, {"criteria": "cpe:2.3:h:cisco:nexus_5020:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BA7F5823-41A8-47C8-A154-02C6C31EF76A"}, {"criteria": "cpe:2.3:h:cisco:nexus_5548p:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E5519EA9-1236-4F51-9974-E3FC1B26B5D2"}, {"criteria": "cpe:2.3:h:cisco:nexus_5548up:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CB0A3B06-8B25-4CD3-AFA9-5F928B1042F4"}, {"criteria": "cpe:2.3:h:cisco:nexus_5596t:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1766443C-1C5A-486E-A36F-D3045F364D78"}, {"criteria": "cpe:2.3:h:cisco:nexus_5596up:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DC4D4403-F93B-4CC8-B75F-7A5B03FEDD85"}, {"criteria": "cpe:2.3:h:cisco:nexus_56128p:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "ABB6E612-4246-4408-B3F6-B31E771F5ACB"}, {"criteria": "cpe:2.3:h:cisco:nexus_5624q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "91B129B2-2B31-4DE0-9F83-CC6E0C8729A0"}, {"criteria": "cpe:2.3:h:cisco:nexus_5648q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3CBD3CD0-B542-4B23-9C9D-061643BE44E8"}, {"criteria": "cpe:2.3:h:cisco:nexus_5672up:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A22A2647-A4C0-4681-BBC5-D95ADBAA0457"}, {"criteria": "cpe:2.3:h:cisco:nexus_5696q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B2BB1A3A-668C-4B0D-8AC2-6B4758B3420B"}, {"criteria": "cpe:2.3:h:cisco:nexus_7000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "12180BEB-7F21-4FA7-ABD2-E9A8EA7340F3"}, {"criteria": "cpe:2.3:h:cisco:nexus_7700:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DD7A4B4B-3BB1-4A4D-911E-C4EEF01BBC45"}, {"criteria": "cpe:2.3:h:cisco:nexus_9000v:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0CD9C1F1-8582-4F67-A77D-97CBFECB88B8"}, {"criteria": "cpe:2.3:h:cisco:nexus_92160yc-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4283E433-7F8C-4410-B565-471415445811"}, {"criteria": "cpe:2.3:h:cisco:nexus_92300yc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F80AB6FB-32FD-43D7-A9F1-80FA47696210"}, {"criteria": "cpe:2.3:h:cisco:nexus_92304qc:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D5B2E4C1-2627-4B9D-8E92-4B483F647651"}, {"criteria": "cpe:2.3:h:cisco:nexus_92348gc-x:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "557ED31C-C26A-4FAE-8B14-D06B49F7F08B"}, {"criteria": "cpe:2.3:h:cisco:nexus_9236c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "11411BFD-3F4D-4309-AB35-A3629A360FB0"}, {"criteria": "cpe:2.3:h:cisco:nexus_9272q:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E663DE91-C86D-48DC-B771-FA72A8DF7A7C"}, {"criteria": "cpe:2.3:h:cisco:nexus_93108tc-ex:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A90184B3-C82F-4CE5-B2AD-97D5E4690871"}, {"criteria": "cpe:2.3:h:cisco:nexus_93108tc-fx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4AB89849-6DA4-4C9D-BC3F-EE0E41FD1901"}, {"criteria": "cpe:2.3:h:cisco:nexus_93120tx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "07DE6F63-2C7D-415B-8C34-01EC05C062F3"}, {"criteria": "cpe:2.3:h:cisco:nexus_93128tx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F423E45D-A6DD-4305-9C6A-EAB26293E53A"}, {"criteria": "cpe:2.3:h:cisco:nexus_93180lc-ex:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E952A96A-0F48-4357-B7DD-1127D8827650"}, {"criteria": "cpe:2.3:h:cisco:nexus_93180yc-ex:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F70D81F1-8B12-4474-9060-B4934D8A3873"}, {"criteria": "cpe:2.3:h:cisco:nexus_93180yc-fx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7349D69B-D8FA-4462-AA28-69DD18A652D9"}, {"criteria": "cpe:2.3:h:cisco:nexus_93216tc-fx2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1CC5F78-E88B-4B82-9E3E-C73D3A49DE26"}, {"criteria": "cpe:2.3:h:cisco:nexus_93240yc-fx2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "91231DC6-2773-4238-8C14-A346F213B5E5"}, {"criteria": "cpe:2.3:h:cisco:nexus_9332c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2DF88547-BAF4-47B0-9F60-80A30297FCEB"}, {"criteria": "cpe:2.3:h:cisco:nexus_9332pq:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "113772B6-E9D2-4094-9468-3F4E1A87D07D"}, {"criteria": "cpe:2.3:h:cisco:nexus_93360yc-fx2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C45A38D6-BED6-4FEF-AD87-A1E813695DE0"}, {"criteria": "cpe:2.3:h:cisco:nexus_9336c-fx2:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F1FC2B1F-232E-4754-8076-CC82F3648730"}, {"criteria": "cpe:2.3:h:cisco:nexus_9336pq_aci_spine:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "785FD17C-F32E-4042-9DDE-A89B3AAE0334"}, {"criteria": "cpe:2.3:h:cisco:nexus_9348gc-fxp:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "17C7E3DB-8E1A-47AD-B1C5-61747DC0CFB9"}, {"criteria": "cpe:2.3:h:cisco:nexus_9364c:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "63842B25-8C32-4988-BBBD-61E9CB09B4F3"}, {"criteria": "cpe:2.3:h:cisco:nexus_9372px:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4364ADB9-8162-451D-806A-B98924E6B2CF"}, {"criteria": "cpe:2.3:h:cisco:nexus_9372px-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B53BCB42-ED61-4FCF-8068-CB467631C63C"}, {"criteria": "cpe:2.3:h:cisco:nexus_9372tx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "49E0371B-FDE2-473C-AA59-47E1269D050F"}, {"criteria": "cpe:2.3:h:cisco:nexus_9372tx-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "489D11EC-5A18-4F32-BC7C-AC1FCEC27222"}, {"criteria": "cpe:2.3:h:cisco:nexus_9396px:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1BC5293E-F2B4-46DC-85DA-167EA323FCFD"}, {"criteria": "cpe:2.3:h:cisco:nexus_9396tx:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EA022E77-6557-4A33-9A3A-D028E2DB669A"}, {"criteria": "cpe:2.3:h:cisco:nexus_9504:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "768BE390-5ED5-48A7-9E80-C4DE8BA979B1"}, {"criteria": "cpe:2.3:h:cisco:nexus_9508:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DDC2F709-AFBE-48EA-A3A2-DA1134534FB6"}, {"criteria": "cpe:2.3:h:cisco:nexus_9516:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7E02DC82-0D26-436F-BA64-73C958932B0A"}, {"criteria": "cpe:2.3:h:cisco:ucs_6248up:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "49112D3F-DFAD-4E71-992B-9E0640FA388C"}, {"criteria": "cpe:2.3:h:cisco:ucs_6296up:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "38A1D8F2-A4A6-4BAC-8326-9F9DE9572FA2"}, {"criteria": "cpe:2.3:h:cisco:ucs_6324:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B82093C6-B36D-4E4E-AD7F-8C107646B8D9"}, {"criteria": "cpe:2.3:h:cisco:ucs_6332:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E406DDCE-6753-43E9-B6F0-7A038DE84E41"}, {"criteria": "cpe:2.3:h:cisco:ucs_6400:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B1888B66-5CF7-4D4D-B832-E2CF75D6EAD8"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}

6.5 /10

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact HIGH

Availability Impact NONE

Scope UNCHANGED

3.3 /10

Access Vector ADJACENT_NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact PARTIAL

Availability Impact NONE

JSON object

Attach tags to CVE-2019-1690

6.5^/10

3.3^/10

Attach tags to `CVE-2019-1690`