// For flags

CVE-2018-0372

 

Severity Score

7.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series Fabric Switches in Application-Centric Infrastructure (ACI) Mode could allow an unauthenticated, remote attacker to cause the device to run low on system memory, which could result in a Denial of Service (DoS) condition on an affected system. The vulnerability is due to improper memory management when DHCPv6 packets are received on an interface of the targeted device. An attacker could exploit this vulnerability by sending a high number of malicious DHCPv6 packets to be processed by an affected device. A successful exploit could allow the attacker to cause the system to run low on memory, which could cause an eventual reboot of an affected device. The vulnerability only applies to IPv6 protocol packets and not for IPv4 protocol packets. This vulnerability affects Cisco Nexus 9000 Series Fabric Switches in ACI Mode running software version 13.0(1k). The vulnerability can only be exploited when unicast routing is enabled on the Bridge Domain (BD). DHCP and DHCP relay do not have to be configured for the vulnerability to be exploited. Cisco Bug IDs: CSCvg38918.

Una vulnerabilidad en la característica DHCPv6 de Cisco Nexus 9000 Series Fabric Switches en modo Application-Centric Infrastructure (ACI) podría permitir que un atacante remoto no autenticado provoque que el dispositivo se ejecute en poca memoria del sistema, lo que podría resultar en una condición de denegación de servicio (DoS) en un sistema afectado. La vulnerabilidad se debe a una gestión incorrecta de memoria cuando se reciben paquetes DHCPv6 en una interfaz del dispositivo afectado. Un atacante podría explotar esta vulnerabilidad enviando un gran número de paquetes DHCPv6 maliciosos para que sean procesados por un dispositivo afectado. Su explotación con éxito podría permitir que el atacante provoque que el sistema se ejecute con poca memoria, lo que podría provocar el reinicio de un dispositivo afectado. La vulnerabilidad solo aplica a los paquetes del protocolo IPv6, no a los del protocolo IPv4. Esta vulnerabilidad afecta a Cisco Nexus 9000 Series Fabric Switches en modo ACI que ejecutan la versión 13.0(1k) del software. La vulnerabilidad solo puede ser explotada cuando se habilita el enrutamiento unicast en el BD (Bridge Domain). Los relays DHCP y DHCP no necesitan estar configurados para explotar la vulnerabilidad. Cisco Bug IDs: CSCvg38918.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2017-11-27 CVE Reserved
  • 2018-07-18 CVE Published
  • 2024-05-27 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
  • CWE-400: Uncontrolled Resource Consumption
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 92160yc-x
Search vendor "Cisco" for product "Nexus 92160yc-x"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 92304qc
Search vendor "Cisco" for product "Nexus 92304qc"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9236c
Search vendor "Cisco" for product "Nexus 9236c"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9272q
Search vendor "Cisco" for product "Nexus 9272q"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93108tc-ex
Search vendor "Cisco" for product "Nexus 93108tc-ex"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93120tx
Search vendor "Cisco" for product "Nexus 93120tx"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93128tx
Search vendor "Cisco" for product "Nexus 93128tx"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 93180yc-ex
Search vendor "Cisco" for product "Nexus 93180yc-ex"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9332pq
Search vendor "Cisco" for product "Nexus 9332pq"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9372px
Search vendor "Cisco" for product "Nexus 9372px"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9372tx
Search vendor "Cisco" for product "Nexus 9372tx"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9396px
Search vendor "Cisco" for product "Nexus 9396px"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9396tx
Search vendor "Cisco" for product "Nexus 9396tx"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9504
Search vendor "Cisco" for product "Nexus 9504"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9508
Search vendor "Cisco" for product "Nexus 9508"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 9516
Search vendor "Cisco" for product "Nexus 9516"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus N9k-c9508-fm-r
Search vendor "Cisco" for product "Nexus N9k-c9508-fm-r"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus N9k-x9636c-r
Search vendor "Cisco" for product "Nexus N9k-x9636c-r"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
13.0\(1k\)
Search vendor "Cisco" for product "Nx-os" and version "13.0\(1k\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus N9k-x9636q-r
Search vendor "Cisco" for product "Nexus N9k-x9636q-r"
--
Safe