CVE-2019-1981— Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2019-1981
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Firepower Threat Defense Software NULL Character Obfuscation Detection Bypass Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the normalization functionality of Cisco Firepower Threat Defense Software, Cisco FirePOWER Services Software for ASA, and Cisco Firepower Management Center Software could allow an unauthenticated, remote attacker to bypass filtering protections. The vulnerability is due to insufficient normalization of a text-based payload. An attacker could exploit this vulnerability by sending traffic that contains specifically obfuscated payloads through an affected device. An exploit could allow the attacker to bypass filtering and deliver malicious payloads to protected systems that would otherwise be blocked.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
权限、特权和访问控制
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Firepower Threat Defense、Cisco FirePOWER Services Software for ASA和Cisco Firepower Management Center 权限许可和访问控制问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Firepower Management Center(FMC)等都是美国思科(Cisco)公司的产品。Cisco Firepower Management Center是新一代防火墙管理中心软件。Cisco Firepower Threat Defense(FTD)是一套提供下一代防火墙服务的统一软件。Cisco?FirePOWER Services Software for ASA是一套用于Cisco ASA设备的安全威胁防护软件。 Cisco FTD、Cisco FirePOWER Se
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco Firepower Threat Defense Software | unspecified ~ n/a | - |
II. Public POCs for CVE-2019-1981
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2019-1981
Please Login to view more intelligence information
Same Patch Batch · Cisco · 2019-11-05 · 9 CVEs total
| CVE-2019-15966 | 7.7 HIGH | Cisco TelePresence Advanced Media Gateway 输入验证错误漏洞 |
| CVE-2019-12625 | 7.5 HIGH | ClamAV Zip Bomb Vulnerability |
| CVE-2019-1789 | 7.5 HIGH | ClamAV Denial of Service Vulnerability |
| CVE-2019-1734 | Cisco FXOS and NX-OS Software Sensitive File Read Information Disclosure Vulnerability | |
| CVE-2019-1877 | Cisco Enterprise Chat and Email Attachment Download Vulnerability | |
| CVE-2019-1978 | Cisco Firepower Threat Defense Software Stream Reassembly Bypass Vulnerability | |
| CVE-2019-1980 | Cisco Firepower Threat Defense Software Nonstandard Protocol Detection Bypass Vulnerabilit | |
| CVE-2019-1982 | Cisco Firepower Threat Defense Software HTTP Filtering Bypass Vulnerability |
IV. Related Vulnerabilities
Same product: Cisco Firepower Threat Defense Software
- CVE-2025-20268
Cisco Secure Firewall Threat Defense Software Geolocation Re - CVE-2025-20222
Cisco Adaptive Security Appliance Software and Firepower Thr - CVE-2025-20217
Cisco Firepower Threat Defense Intrusion Detection Denial of - CVE-2021-1494
Snort 安全漏洞 - CVE-2021-34753
Cisco Firepower Threat Defense Ethernet Industrial Protocol
Same vendor: Cisco
- CVE-2026-20219
Cisco Slido IDOR漏洞致用户隐私泄露 - CVE-2026-20034
Cisco Unity Connection Remote Code Execution Vulnerability - CVE-2026-20035
Cisco Unity Connection Server-Side Request Forgery Vulnerabi - CVE-2026-20167
Cisco IoT Field Network Director Remote Device Denial of Ser - CVE-2026-20169
Cisco IoT Field Network Director Command Injection Vulnerabi
V. Comments for CVE-2019-1981
No comments yet