CVE-2018-0372
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series Fabric Switches in Application-Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause the device to run low on system memory, which could result in a Denial of Service (DoS) condition on an affected system. The vulnerability is due to improper memory management when DHCPv6 packets are received on an interface of the targeted device. An attacker could exploit this vulnerability by sending a high number of malicious DHCPv6 packets to be processed by an affected device. A successful exploit could allow the attacker to cause the system to run low on memory, which could cause an eventual reboot of an affected device. The vulnerability only applies to IPv6 protocol packets and not for IPv4 protocol packets. This vulnerability affects Cisco Nexus 9000 Series Fabric Switches in ACI Mode running software version 13.0(1k). The vulnerability can only be exploited when unicast routing is enabled on the Bridge Domain (BD). DHCP and DHCP relay do not have to be configured for the vulnerability to be exploited. Cisco Bug IDs: CSCvg38918.
Una vulnerabilidad en la característica DHCPv6 de Cisco Nexus 9000 Series Fabric Switches en modo Application-Centric Infrastructure (ACI) podría permitir que un atacante remoto no autenticado provoque que el dispositivo se ejecute en poca memoria del sistema, lo que podría resultar en una condición de denegación de servicio (DoS) en un sistema afectado. La vulnerabilidad se debe a una gestión incorrecta de memoria cuando se reciben paquetes DHCPv6 en una interfaz del dispositivo afectado. Un atacante podría explotar esta vulnerabilidad enviando un gran número de paquetes DHCPv6 maliciosos para que sean procesados por un dispositivo afectado. Su explotación con éxito podría permitir que el atacante provoque que el sistema se ejecute con poca memoria, lo que podría provocar el reinicio de un dispositivo afectado. La vulnerabilidad solo aplica a los paquetes del protocolo IPv6, no a los del protocolo IPv4. Esta vulnerabilidad afecta a Cisco Nexus 9000 Series Fabric Switches en modo ACI que ejecutan la versión 13.0(1k) del software. La vulnerabilidad solo puede ser explotada cuando se habilita el enrutamiento unicast en el BD (Bridge Domain). Los relays DHCP y DHCP no necesitan estar configurados para explotar la vulnerabilidad. Cisco Bug IDs: CSCvg38918.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-11-27 CVE Reserved
- 2018-07-18 CVE Published
- 2024-05-27 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-400: Uncontrolled Resource Consumption
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securitytracker.com/id/1041348 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 92160yc-x Search vendor "Cisco" for product "Nexus 92160yc-x" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 92304qc Search vendor "Cisco" for product "Nexus 92304qc" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9236c Search vendor "Cisco" for product "Nexus 9236c" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9272q Search vendor "Cisco" for product "Nexus 9272q" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 93108tc-ex Search vendor "Cisco" for product "Nexus 93108tc-ex" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 93120tx Search vendor "Cisco" for product "Nexus 93120tx" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 93128tx Search vendor "Cisco" for product "Nexus 93128tx" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 93180yc-ex Search vendor "Cisco" for product "Nexus 93180yc-ex" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9332pq Search vendor "Cisco" for product "Nexus 9332pq" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9372px Search vendor "Cisco" for product "Nexus 9372px" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9372tx Search vendor "Cisco" for product "Nexus 9372tx" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9396px Search vendor "Cisco" for product "Nexus 9396px" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9396tx Search vendor "Cisco" for product "Nexus 9396tx" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9504 Search vendor "Cisco" for product "Nexus 9504" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9508 Search vendor "Cisco" for product "Nexus 9508" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus 9516 Search vendor "Cisco" for product "Nexus 9516" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus N9k-c9508-fm-r Search vendor "Cisco" for product "Nexus N9k-c9508-fm-r" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus N9k-x9636c-r Search vendor "Cisco" for product "Nexus N9k-x9636c-r" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Nx-os Search vendor "Cisco" for product "Nx-os" | 13.0\(1k\) Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)" | - |
Affected
| in | Cisco Search vendor "Cisco" | Nexus N9k-x9636q-r Search vendor "Cisco" for product "Nexus N9k-x9636q-r" | - | - |
Safe
|