CVE-2019-1833: Cisco Firepower Threat Defense Software SSL/TLS Policy Bypass Vulnerability
First published: Thu May 16 2019(Updated: )
A vulnerability in the Secure Sockets Layer (SSL)/Transport Layer Security (TLS) protocol parser of Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to bypass configured policies. The vulnerability is due to improper parsing of specific attributes in a TLS packet header. An attacker could exploit this vulnerability by sending malicious TLS messages to the affected system. A successful exploit could allow the attacker to bypass the configured policies for the system, which could allow traffic to flow through without being inspected.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Secure Firewall Management Center | =6.1.0 | |
| Cisco Secure Firewall Management Center | =6.2.0 | |
| Cisco Secure Firewall Management Center | =6.2.1 | |
| Cisco Secure Firewall Management Center | =6.2.2 | |
| Cisco Secure Firewall Management Center | =6.2.3 | |
| Cisco Firepower Management Center Software | =6.1.0 | |
| Cisco Firepower Management Center Software | =6.2.0 | |
| Cisco Firepower Management Center Software | =6.2.1 | |
| Cisco Firepower Management Center Software | =6.2.2 | |
| Cisco Firepower Management Center Software | =6.2.3 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-1833?
CVE-2019-1833 has been rated as high severity, as it allows unauthenticated remote attackers to bypass security policies.
How do I fix CVE-2019-1833?
To fix CVE-2019-1833, update your Cisco Secure Firewall Management Center or Cisco Firepower Management Center software to the latest recommended version.
What versions are affected by CVE-2019-1833?
CVE-2019-1833 affects Cisco Secure Firewall Management Center versions 6.1.0, 6.2.0 to 6.2.3, and Cisco Firepower Management Center versions 6.1.0, 6.2.0 to 6.2.3.
Can CVE-2019-1833 be exploited over the internet?
Yes, CVE-2019-1833 can be exploited by an unauthenticated remote attacker over the internet.
What impact does CVE-2019-1833 have on affected systems?
The impact of CVE-2019-1833 allows attackers to bypass configured policies, potentially leading to unauthorized access and data compromise.
- agent/references
- agent/type
- agent/severity
- agent/weakness
- agent/title
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/first-publish-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/last-modified-date
- agent/author
- agent/event
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco secure firewall management center
- version/cisco secure firewall management center/6.1.0
- version/cisco secure firewall management center/6.2.0
- version/cisco secure firewall management center/6.2.1
- version/cisco secure firewall management center/6.2.2
- version/cisco secure firewall management center/6.2.3
- canonical/cisco firepower management center software
- version/cisco firepower management center software/6.1.0
- version/cisco firepower management center software/6.2.0
- version/cisco firepower management center software/6.2.1
- version/cisco firepower management center software/6.2.2
- version/cisco firepower management center software/6.2.3