CVE-2019-1700— Cisco Firepower 9000 Series Firepower 2-Port 100G Double-Width Network Module Queue Wedge Denial of Service Vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-1700
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Firepower 9000 Series Firepower 2-Port 100G Double-Width Network Module Queue Wedge Denial of Service Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in field-programmable gate array (FPGA) ingress buffer management for the Cisco Firepower 9000 Series with the Cisco Firepower 2-port 100G double-width network module (PID: FPR9K-DNM-2X100G) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. Manual intervention may be required before a device will resume normal operations. The vulnerability is due to a logic error in the FPGA related to the processing of different types of input packets. An attacker could exploit this vulnerability by being on the adjacent subnet and sending a crafted sequence of input packets to a specific interface on an affected device. A successful exploit could allow the attacker to cause a queue wedge condition on the interface. When a wedge occurs, the affected device will stop processing any additional packets that are received on the wedged interface. Version 2.2 is affected.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
资源管理错误
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Firepower 9000 Series 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Firepower 9000 Series是美国思科(Cisco)公司的一款9000系列防火墙设备。 Cisco Firepower 9000 Series(安装有Firepower 2-port 100G double-width network模块)中的现场可编程门阵列(FPGA) ingress buffer management存在资源管理错误漏洞,该漏洞源于现场可编程门阵列中存在逻辑错误。攻击者可通过发送特殊顺序的输入数据包利用该漏洞造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco Firepower Extensible Operating System (FXOS) | 2.2 | - |
II. Public POCs for CVE-2019-1700
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-1700
请登录查看更多情报信息。
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190220-firpwr-dosvendor-advisoryx_refsource_CISCO
- https://nvd.nist.gov/vuln/detail/CVE-2019-1700
Same Patch Batch · Cisco · 2019-02-21 · 12 CVEs total
| CVE-2019-1659 | Cisco Prime Infrastructure Certificate Validation Vulnerability | |
| CVE-2019-1662 | Cisco Prime Collaboration Assurance Software Unauthenticated Access Vulnerability | |
| CVE-2019-1664 | Cisco HyperFlex Software Unauthenticated Root Access Vulnerability | |
| CVE-2019-1665 | Cisco Hyperflex Stored Cross-Site Scripting Vulnerability | |
| CVE-2019-1666 | Cisco HyperFlex Unauthenticated Statistics Retrieval Vulnerability | |
| CVE-2019-1667 | Cisco HyperFlex Arbitrary Statistics Write Vulnerability | |
| CVE-2019-1681 | Cisco Network Convergence System 1000 Series TFTP Directory Traversal Vulnerability | |
| CVE-2019-1684 | Cisco IP Phone 7800 and 8800 Series Cisco Discovery Protocol and Link Layer Discovery Prot | |
| CVE-2019-1685 | Cisco Unity Connection Reflected Cross-Site Scripting Vulnerability | |
| CVE-2019-1691 | Cisco Firepower Threat Defense Software SSL or TLS Denial of Service Vulnerability | |
| CVE-2019-1698 | Cisco IoT Field Network Director XML External Entity Vulnerability |
IV. Related Vulnerabilities
Same product: Cisco Firepower Extensible Operating System (FXOS)
- CVE-2026-20099
Cisco UCS Manager and FXOS Software Command Injection Vulner - CVE-2026-20091
Cisco UCS Manager and FXOS Software Stored Cross-Site Script - CVE-2022-20865
Cisco FXOS Software Command Injection Vulnerability - CVE-2020-3455
Cisco FXOS Software for Firepower 4100/9300 Series Appliance - CVE-2020-3459
Cisco FXOS Software for Firepower 4100/9300 Series Command I
Same vendor: Cisco
- CVE-2026-20219
Cisco Slido 安全漏洞 - CVE-2026-20034
Cisco Unity Connection Remote Code Execution Vulnerability - CVE-2026-20035
Cisco Unity Connection Server-Side Request Forgery Vulnerabi - CVE-2026-20167
Cisco IoT Field Network Director Remote Device Denial of Ser - CVE-2026-20169
Cisco IoT Field Network Director Command Injection Vulnerabi
V. Comments for CVE-2019-1700
No comments yet