cisco-sa-20191002-ftd-fpmc-dos: Cisco FTD, FMC, and FXOS Software Pluggable Authentication Module Denial of Service Vulnerability
First published: Wed Oct 02 2019(Updated: )
A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. An attacker could exploit this vulnerability by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins. A successful exploit could allow the attacker to exhaust system resources and cause the device to reload, resulting in a DoS condition. To exploit this vulnerability, the attacker needs valid user credentials on the system. Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-fpmc-dos
Credit: This vulnerability was found by Sanmith Prakash Cisco during internal security testing
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco FTD/FMC Software Release (Firepower 1000/2100 Series) | =6.2.3<6.2.3.14=6.2.2<6.2.3.14=6.2.1<6.2.3.14=6.2.0<6.2.3.14=6.1.0 and earlier<6.2.3.14 | 6.2.3.14 6.2.3.14 6.2.3.14 6.2.3.14 6.2.3.14 |
| Cisco FTD/FMC Software Release (Other Platforms) | ||
| Cisco FX-OS | =2.6<2.6.1.131=2.4<2.6.1.131=2.3<2.3.1.155=2.2 and earlier<2.2.2.101 | 2.6.1.131 2.6.1.131 2.3.1.155 2.2.2.101 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID?
The vulnerability ID is cisco-sa-20191002-ftd-fpmc-dos.
What is the severity of cisco-sa-20191002-ftd-fpmc-dos?
The severity of cisco-sa-20191002-ftd-fpmc-dos is high.
How does the vulnerability affect Cisco products?
The vulnerability affects Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software.
How can an attacker exploit this vulnerability?
An authenticated remote attacker can exploit this vulnerability to cause a denial of service (DoS) condition.
Are there any available fixes for this vulnerability?
Yes, Cisco has released software updates to address this vulnerability.
- agent/type
- agent/first-publish-date
- agent/softwarecombine
- agent/last-modified-date
- agent/weakness
- agent/title
- agent/author
- agent/severity
- agent/references
- agent/description
- agent/event
- agent/source
- agent/tags
- collector/cisco-advisory
- source/Cisco
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco ftd/fmc software release (firepower 1000/2100 series)
- version/cisco ftd/fmc software release (firepower 1000/2100 series)/6.2.3
- version/cisco ftd/fmc software release (firepower 1000/2100 series)/6.2.2
- version/cisco ftd/fmc software release (firepower 1000/2100 series)/6.2.1
- version/cisco ftd/fmc software release (firepower 1000/2100 series)/6.2.0
- version/cisco ftd/fmc software release (firepower 1000/2100 series)/6.1.0 and earlier
- canonical/cisco ftd/fmc software release (other platforms)
- canonical/cisco fx-os
- version/cisco fx-os/2.6
- version/cisco fx-os/2.4
- version/cisco fx-os/2.3
- version/cisco fx-os/2.2 and earlier