How severe is CVE-2019-1806?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.7 out of 10.

What type of vulnerability is CVE-2019-1806?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2019-1806

HIGH Year: 2019

CVSS v3 Score

7.7

High

CVSS v2 Score

6.8

Medium

Weakness Type

CWE-20

View all →

Vulnerability Description

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco Small Business Sx200, Sx300, Sx500, ESW2 Series Managed Switches and Small Business Sx250, Sx350, Sx550 Series Switches could allow an authenticated, remote attacker to cause the SNMP application of an affected device to cease processing traffic, resulting in the CPU utilization reaching one hundred percent. Manual intervention may be required before a device resumes normal operations. The vulnerability is due to improper validation of SNMP protocol data units (PDUs) in SNMP packets. An attacker could exploit this vulnerability by sending a malicious SNMP packet to an affected device. A successful exploit could allow the attacker to cause the device to cease forwarding traffic, which could result in a denial of service (DoS) condition. Cisco has released firmware updates that address this vulnerability.

CVE-2016-8631

HIGH

CVSS:7.7(High)

The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect netw...

CWE-202016

CVE-2018-0456

HIGH

CVSS:7.7(High)

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application of an affect...

CWE-202018

CVE-2018-1000026

HIGH

CVSS:7.7(High)

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware...

CWE-202018

CVE-2018-8218

HIGH

CVSS:7.7(High)

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-...

CWE-202018

CVE-2019-15276

HIGH

CVSS:7.7(High)

A vulnerability in the web interface of Cisco Wireless LAN Controller Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service (DoS) condition on an affected ...

CWE-202019

CVE-2019-15966

HIGH

CVSS:7.7(High)

A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Th...

CWE-202019

CVE-2019-1806

Vulnerability Description

Related Vulnerabilities

CVE-2016-8631

CVE-2018-0456

CVE-2018-1000026

CVE-2018-8218

CVE-2019-15276

CVE-2019-15966