Main Vulnerability Database SB2018020809

SB2018020809 - Security restrictions bypass in Cisco Firepower Management

Published: February 8, 2018

Security Bulletin ID SB2018020809

Severity

Low

Patch available

YES

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Data manipulation

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 security vulnerability.

1) Security restrictions bypass (CVE-ID: CVE-2018-0138)

The vulnerability allows a remote attacker to bypass security restrictions on the target system.

The weakness exists in the detection engine of Cisco Firepower System Software due to the affected software does not detect BitTorrent handshake messages correctly. A remote attacker can send a specially crafted BitTorrent connection request and bypass file policies that are configured to block files transmitted to the affected device via the BitTorrent protocol.

Remediation

Install update from vendor's website.

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-fss