NVD - CVE-2019-12668

Vulnerability Change Records for CVE-2019-12668

Change History

Initial Analysis by NIST 10/08/2019 9:55:22 AM

Action	Type	Old Value	New Value
Added	CPE Configuration		OR cpe:2.3:o:cisco:ios:15.2\(2\)e::::::: cpe:2.3:o:cisco:ios:15.2\(2\)ea::::::: cpe:2.3:o:cisco:ios:15.2\(3\)e::::::: cpe:2.3:o:cisco:ios:15.2\(3\)ea::::::: cpe:2.3:o:cisco:ios:15.2\(4\)e::::::: cpe:2.3:o:cisco:ios:15.2\(4\)ea::::::: cpe:2.3:o:cisco:ios:15.2\(4\)ec::::::: cpe:2.3:o:cisco:ios:15.2\(5\)e::::::: cpe:2.3:o:cisco:ios:15.2\(5\)ea::::::: cpe:2.3:o:cisco:ios:15.2\(5\)ex::::::: cpe:2.3:o:cisco:ios:15.2\(6\)e::::::: cpe:2.3:o:cisco:ios:15.2\(7\)e::::::: cpe:2.3:o:cisco:ios_xe:3.6e::::::: cpe:2.3:o:cisco:ios_xe:3.7e::::::: cpe:2.3:o:cisco:ios_xe:3.8e::::::: cpe:2.3:o:cisco:ios_xe:3.9e::::::: cpe:2.3:o:cisco:ios_xe:3.10e::::::: cpe:2.3:o:cisco:ios_xe::::::::* versions from (including) 16.1.1 up to (excluding) 16.3.8 cpe:2.3:o:cisco:ios_xe:16.1.1::::::: cpe:2.3:o:cisco:ios_xe::::::::* versions from (including) 16.4.1 up to (excluding) 16.6.5 cpe:2.3:o:cisco:ios_xe::::::::* versions from (including) 16.7.1 up to (excluding) 16.8.2 cpe:2.3:o:cisco:ios_xe::::::::* versions from (including) 16.9.1 up to (excluding) 16.9.2
Added	CVSS V2		NIST (AV:N/AC:M/Au:S/C:N/I:P/A:N)
Added	CVSS V2 Metadata		Victim must voluntarily interact with attack mechanism
Added	CVSS V3.1		NIST AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Added	CWE		CWE-79
Changed	Reference Type	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-sbxss No Types Assigned	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190925-sbxss Vendor Advisory