{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-05-02T05:50:35.321","vulnerabilities":[{"cve":{"id":"CVE-2019-12700","sourceIdentifier":"psirt@cisco.com","published":"2019-10-02T19:15:13.810","lastModified":"2024-11-26T16:09:02.407","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the configuration of the Pluggable Authentication Module (PAM) used in Cisco Firepower Threat Defense (FTD) Software, Cisco Firepower Management Center (FMC) Software, and Cisco FXOS Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper resource management in the context of user session management. An attacker could exploit this vulnerability by connecting to an affected system and performing many simultaneous successful Secure Shell (SSH) logins. A successful exploit could allow the attacker to exhaust system resources and cause the device to reload, resulting in a DoS condition. To exploit this vulnerability, the attacker needs valid user credentials on the system."},{"lang":"es","value":"Una vulnerabilidad en la configuración del Pluggable Authentication Module (PAM) utilizado en el Software Cisco Firepower Threat Defense (FTD), el Software Cisco Firepower Management Center (FMC) y el Software Cisco FXOS, podría permitir a un atacante remoto autenticado causar una condición de denegación de servicio (DoS). La vulnerabilidad es debido a la administración de recursos inapropiada en el contexto de la administración de sesión del usuario. Un atacante podría explotar esta vulnerabilidad mediante la conexión a un sistema afectado y realizando muchos inicios de sesión con éxito de Secure Shell (SSH) simultáneos. Una explotación con éxito podría permitir al atacante agotar los recursos del sistema y causar que el dispositivo se recargue, resultando en una condición DoS. Para explotar esta vulnerabilidad, el atacante necesita credenciales de usuario válidas en el sistema."}],"metrics":{"cvssMetricV31":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H","baseScore":6.5,"baseSeverity":"MEDIUM","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":2.8,"impactScore":3.6}],"cvssMetricV30":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H","baseScore":7.7,"baseSeverity":"HIGH","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"LOW","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"HIGH"},"exploitabilityScore":3.1,"impactScore":4.0}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:N/I:N/A:C","baseScore":6.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"NONE","integrityImpact":"NONE","availabilityImpact":"COMPLETE"},"baseSeverity":"MEDIUM","exploitabilityScore":8.0,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-400"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"NVD-CWE-Other"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:firepower_9300_firmware:r114:*:*:*:*:*:*:*","matchCriteriaId":"7BAFB031-B555-4291-94A7-B624CDDA6E22"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:firepower_9300_firmware:r241:*:*:*:*:*:*:*","matchCriteriaId":"D9204F1F-5094-40F5-88C2-A709E599FFE8"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:firepower_9300:-:*:*:*:*:*:*:*","matchCriteriaId":"07DAFDDA-718B-4B69-A524-B0CEB80FE960"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:firepower_extensible_operating_system:*:*:*:*:*:*:*:*","versionEndIncluding":"2.2","matchCriteriaId":"C8D9C558-2EDE-493B-B473-30686B1F5F1F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:firepower_extensible_operating_system:*:*:*:*:*:*:*:*","versionStartIncluding":"2.3","versionEndExcluding":"2.3.1.155","matchCriteriaId":"3D69E67A-C3CE-4714-9DFF-6D4FAD4FA3BB"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:firepower_extensible_operating_system:*:*:*:*:*:*:*:*","versionStartIncluding":"2.4","versionEndExcluding":"2.6.1.131","matchCriteriaId":"D4B07EAA-8923-4AE7-BB3E-578955C06251"}]}]},{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*","versionEndIncluding":"6.1.0","matchCriteriaId":"BC5F3455-0918-4F29-987F-376FF74F8CE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndExcluding":"6.2.3.14","matchCriteriaId":"3C50547D-4EEE-40B2-80F3-DC0059DF5B27"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*","versionEndIncluding":"6.1.0","matchCriteriaId":"82A4999E-1D1C-45CD-BF8C-C08D9AB7DA0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndExcluding":"6.2.3.14","matchCriteriaId":"9BB17BB1-4542-47AF-AE44-FF8A27BC1F86"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:firepower_1000:-:*:*:*:*:*:*:*","matchCriteriaId":"E6F79864-CA70-4192-AC2C-E174DF3F25B2"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:firepower_2100:-:*:*:*:*:*:*:*","matchCriteriaId":"D23A26EF-5B43-437C-A962-4FC69D8A0FF4"}]}]},{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*","versionEndIncluding":"6.1.0","matchCriteriaId":"BC5F3455-0918-4F29-987F-376FF74F8CE0"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndExcluding":"6.2.2.5","matchCriteriaId":"8F67688A-E56F-49A6-955E-5D541E96E5F7"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:firepower_threat_defense:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.3","versionEndExcluding":"6.2.3.7","matchCriteriaId":"2B9EB1B7-F821-41A0-9282-8F9D698DF0AE"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*","versionEndIncluding":"6.1.0","matchCriteriaId":"82A4999E-1D1C-45CD-BF8C-C08D9AB7DA0E"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.0","versionEndExcluding":"6.2.3.14","matchCriteriaId":"9BB17BB1-4542-47AF-AE44-FF8A27BC1F86"},{"vulnerable":true,"criteria":"cpe:2.3:a:cisco:secure_firewall_management_center:*:*:*:*:*:*:*:*","versionStartIncluding":"6.2.3","versionEndExcluding":"6.2.3.7","matchCriteriaId":"FA4116CE-6AAC-4D3F-AF7F-B4C1B9E6A242"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-fpmc-dos","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191002-ftd-fpmc-dos","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}