CVE-2018-0302

Severity Score

7.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in the CLI parser of Cisco FXOS Software and Cisco UCS Fabric Interconnect Software could allow an authenticated, local attacker to cause a buffer overflow on an affected device. The vulnerability is due to incorrect input validation in the CLI parser subsystem. An attacker could exploit this vulnerability by exceeding the expected length of user input. A successful exploit could allow the attacker to execute arbitrary code with root privileges on the affected system. This vulnerability affects Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, UCS 6100 Series Fabric Interconnects, UCS 6200 Series Fabric Interconnects, UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvb61099, CSCvb86743.

Una vulnerabilidad en el analizador de la interfaz de línea de comandos de Cisco FXOS y Cisco UCS Fabric Interconnect Software podría permitir que un atacante local autenticado provoque un desbordamiento de búfer en un sistema afectado. Esta vulnerabilidad se debe a la validación de entradas incorrecta en el subsistema del analizador de la interfaz de línea de comandos. Un atacante podría explotar esta vulnerabilidad sobrepasando la longitud esperada de la entrada de usuario. Su explotación con éxito podría permitir que el atacante ejecute código arbitrario con privilegios root en el sistema afectado. Esta vulnerabilidad afecta a Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, UCS 6100 Series Fabric Interconnects, UCS 6200 Series Fabric Interconnects y UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvb61099, CSCvb86743.

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-11-27 CVE Reserved
2018-06-21 CVE Published
2023-03-08 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation
CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-fxos-ace	2023-04-20

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	3.1\(1k\)a Search vendor "Cisco" for product "Nx-os" and version "3.1\(1k\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6120xp Search vendor "Cisco" for product "Ucs 6120xp"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	3.1\(1k\)a Search vendor "Cisco" for product "Nx-os" and version "3.1\(1k\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6140xp Search vendor "Cisco" for product "Ucs 6140xp"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	3.1\(1k\)a Search vendor "Cisco" for product "Nx-os" and version "3.1\(1k\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6248up Search vendor "Cisco" for product "Ucs 6248up"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	3.1\(1k\)a Search vendor "Cisco" for product "Nx-os" and version "3.1\(1k\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6296up Search vendor "Cisco" for product "Ucs 6296up"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	3.1\(1k\)a Search vendor "Cisco" for product "Nx-os" and version "3.1\(1k\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6324 Search vendor "Cisco" for product "Ucs 6324"	-	-	Safe
Cisco Search vendor "Cisco"	Nx-os Search vendor "Cisco" for product "Nx-os"	3.1\(1k\)a Search vendor "Cisco" for product "Nx-os" and version "3.1\(1k\)a"	-	Affected	in	Cisco Search vendor "Cisco"	Ucs 6332 Search vendor "Cisco" for product "Ucs 6332"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4110 Search vendor "Cisco" for product "Firepower 4110"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4120 Search vendor "Cisco" for product "Firepower 4120"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4140 Search vendor "Cisco" for product "Firepower 4140"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4150 Search vendor "Cisco" for product "Firepower 4150"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4110 Search vendor "Cisco" for product "Firepower 4110"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4120 Search vendor "Cisco" for product "Firepower 4120"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4140 Search vendor "Cisco" for product "Firepower 4140"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 4150 Search vendor "Cisco" for product "Firepower 4150"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 1.1 < 1.1.4.169 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 1.1 < 1.1.4.169"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 9300 Security Appliance Search vendor "Cisco" for product "Firepower 9300 Security Appliance"	-	-	Safe
Cisco Search vendor "Cisco"	Firepower Extensible Operating System Search vendor "Cisco" for product "Firepower Extensible Operating System"	>= 2.0 < 2.0.1.135 Search vendor "Cisco" for product "Firepower Extensible Operating System" and version " >= 2.0 < 2.0.1.135"	-	Affected	in	Cisco Search vendor "Cisco"	Firepower 9300 Security Appliance Search vendor "Cisco" for product "Firepower 9300 Security Appliance"	-	-	Safe