CVE-2018-0298

Severity Score

7.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in the web UI of Cisco FXOS and Cisco UCS Fabric Interconnect Software could allow an unauthenticated, remote attacker to cause a buffer overflow on an affected system. The vulnerability is due to incorrect input validation in the web UI. An attacker could exploit this vulnerability by sending a malicious HTTP or HTTPS packet directed to the physical management interface of an affected system. A successful exploit could allow the attacker to cause the process to crash and possibly reload the device, resulting in a denial of service (DoS) condition on the affected system. This vulnerability affects Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, UCS 6200 Series Fabric Interconnects, UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvb61398, CSCvb86799.

Una vulnerabilidad en la interfaz web de Cisco FXOS y Cisco UCS Fabric Interconnect Software podría permitir que un atacante remoto sin autenticar provoque un desbordamiento de búfer en un sistema afectado. Esta vulnerabilidad se debe a la incompleta validación de entradas en la interfaz web. Un atacante podría explotar esta vulnerabilidad enviando un paquete HTTP o HTTPS directamente a la interfaz de gestión física de un sistema afectado. Su explotación con éxito podría permitir que el atacante haga que el proceso se cierre inesperadamente y, posiblemente, que se reinicie el dispositivo, provocando una denegación de servicio (DoS) en el sistema afectado. esta vulnerabilidad afecta a Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, UCS 6200 Series Fabric Interconnects y UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvb61398, CSCvb86799.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-11-27 CVE Reserved
2018-06-21 CVE Published
2024-04-30 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-fxos-dos	2023-04-20

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	>= 3.0\(2\) < 3.1\(3a\)a Search vendor "Cisco" for product "Nx-os" and version " >= 3.0\(2\) < 3.1\(3a\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6120xp Search vendor "Cisco" for product "Ucs 6120xp"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	>= 3.0\(2\) < 3.1\(3a\)a Search vendor "Cisco" for product "Nx-os" and version " >= 3.0\(2\) < 3.1\(3a\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6140xp Search vendor "Cisco" for product "Ucs 6140xp"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	>= 3.0\(2\) < 3.1\(3a\)a Search vendor "Cisco" for product "Nx-os" and version " >= 3.0\(2\) < 3.1\(3a\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6248up Search vendor "Cisco" for product "Ucs 6248up"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	>= 3.0\(2\) < 3.1\(3a\)a Search vendor "Cisco" for product "Nx-os" and version " >= 3.0\(2\) < 3.1\(3a\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6296up Search vendor "Cisco" for product "Ucs 6296up"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	>= 3.0\(2\) < 3.1\(3a\)a Search vendor "Cisco" for product "Nx-os" and version " >= 3.0\(2\) < 3.1\(3a\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6324 Search vendor "Cisco" for product "Ucs 6324"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	>= 3.0\(2\) < 3.1\(3a\)a Search vendor "Cisco" for product "Nx-os" and version " >= 3.0\(2\) < 3.1\(3a\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6332 Search vendor "Cisco" for product "Ucs 6332"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4110 Search vendor "Cisco" for product "Firepower 4110"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4120 Search vendor "Cisco" for product "Firepower 4120"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4140 Search vendor "Cisco" for product "Firepower 4140"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4150 Search vendor "Cisco" for product "Firepower 4150"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4110 Search vendor "Cisco" for product "Firepower 4110"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4120 Search vendor "Cisco" for product "Firepower 4120"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4140 Search vendor "Cisco" for product "Firepower 4140"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4150 Search vendor "Cisco" for product "Firepower 4150"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.179 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.179"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 9300 Security Appliance Search vendor "Cisco" for product "Firepower 9300 Security Appliance"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.153 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.153"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 9300 Security Appliance Search vendor "Cisco" for product "Firepower 9300 Security Appliance"	-	-	Safe