CVE-2018-0315

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in the authentication, authorization, and accounting (AAA) security services of Cisco IOS XE Software could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device or cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to incorrect memory operations that the affected software performs when the software parses a username during login authentication. An attacker could exploit this vulnerability by attempting to authenticate to an affected device. A successful exploit could allow the attacker to execute arbitrary code on the affected device or cause the affected device to reload, resulting in a DoS condition. This vulnerability affects Cisco devices that are running Cisco IOS XE Software Release Fuji 16.7.1 or Fuji 16.8.1 and are configured to use AAA for login authentication. Cisco Bug IDs: CSCvi25380.

Una vulnerabilidad en los servicios de seguridad AAA (Authentication, Authorization and Accounting) de Cisco IOS XE Software podría permitir que un atacante remoto sin autenticar ejecute código arbitrario en un dispositivo afectado o haga que un dispositivo afectado se reinicie, lo que resulta en una condición de denegación de servicio (DoS). La vulnerabilidad se debe a operaciones de memoria incorrectas realizadas por el software afectado cuando analiza un nombre de usuario durante la autenticación de inicio de sesión. Un atacante podría explotar esta vulnerabilidad intentando autenticarse en un dispositivo afectado. Una explotación exitosa podría permitir que el atacante ejecute código arbitrario en el sistema afectado o haga que se reinicie, provocando una denegación de servicio (DoS) como consecuencia. Esta vulnerabilidad afecta a los dispositivos Cisco que ejecutan Cisco IOS XE Software Release Fuji 16.7.1 o Fuji 16.8.1 y que están configurados para emplear AAA para la autenticación de inicio de sesión. Cisco Bug IDs: CSCvi25380.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Complete

Integrity

Complete

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-11-27 CVE Reserved
2018-06-07 CVE Published
2024-05-17 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer

CAPEC

References (3)

URL	Tag	Source
http://www.securityfocus.com/bid/104410	Third Party Advisory
http://www.securitytracker.com/id/1041086	Broken Link

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180606-aaa	2023-01-24

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Ios Xe Search vendor "Cisco" for product "Ios Xe"				16.7.1 Search vendor "Cisco" for product "Ios Xe" and version "16.7.1"		-		Affected
Cisco Search vendor "Cisco"		Ios Xe Search vendor "Cisco" for product "Ios Xe"				16.8.1 Search vendor "Cisco" for product "Ios Xe" and version "16.8.1"		-		Affected