CVE-2018-0384
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a URL-based access control policy that is configured to block traffic for an affected system. The vulnerability exists because the affected software incorrectly handles TCP packets that are received out of order when a TCP SYN retransmission is issued. An attacker could exploit this vulnerability by sending a maliciously crafted connection through an affected device. A successful exploit could allow the attacker to bypass a URL-based access control policy that is configured to block traffic for the affected system. Cisco Bug IDs: CSCvh84511.
Una vulnerabilidad en el motor de detección de Cisco Firepower System Software podría permitir que un atacante remoto sin autenticar omita una política de control de acceso basada en URL que está configurada para bloquear el tráfico para un sistema afectado. La vulnerabilidad existe debido a que el software afectado gestiona incorrectamente los paquetes TCP que se reciben fuera de orden cuando se lanza una retransmisión TCP SYN. Un atacante podría explotar esta vulnerabilidad enviando una conexión maliciosamente manipulada a través de un dispositivo afectado. Un exploit exitoso podría permitir que el atacante omita una política de control de acceso basada en URL que está configurada para bloquear el tráfico para un sistema afectado. Cisco Bug IDs: CSCvh84511.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-11-27 CVE Reserved
- 2018-07-16 CVE Published
- 2024-01-16 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-693: Protection Mechanism Failure
CAPEC
References (3)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/104725 | Third Party Advisory | |
| http://www.securitytracker.com/id/1041284 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Firepower Management Center Search vendor "Cisco" for product "Firepower Management Center" | 6.0.0 Search vendor "Cisco" for product "Firepower Management Center" and version "6.0.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower Management Center Search vendor "Cisco" for product "Firepower Management Center" | 6.1.0 Search vendor "Cisco" for product "Firepower Management Center" and version "6.1.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower Management Center Search vendor "Cisco" for product "Firepower Management Center" | 6.2.0 Search vendor "Cisco" for product "Firepower Management Center" and version "6.2.0" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower Management Center Search vendor "Cisco" for product "Firepower Management Center" | 6.2.1 Search vendor "Cisco" for product "Firepower Management Center" and version "6.2.1" | - |
Affected
| ||||||
| Cisco Search vendor "Cisco" | Firepower Management Center Search vendor "Cisco" for product "Firepower Management Center" | 6.2.2 Search vendor "Cisco" for product "Firepower Management Center" and version "6.2.2" | - |
Affected
| ||||||