Main Vulnerability Database Vulnerabilities #VU13425

Improper input validation in Cisco NX-OS - CVE-2018-0291

Published: June 20, 2018 / Updated: June 22, 2018

Vulnerability identifier: #VU13425

CSH Severity: Medium

CVSS v4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green

CVE-ID: CVE-2018-0291

CWE-ID: CWE-20

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vendor: Cisco Systems, Inc

Affected software:
Cisco NX-OS

Detailed vulnerability description

The vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.

The vulnerability exists in the Simple Network Management Protocol (SNMP) input packet processor due to improper validation of SNMP protocol data units (PDUs) in SNMP packets. A remote attacker can send a specially crafted SNMP packet and cause the SNMP application to restart multiple times, leading to a system-level restart and a denial of service condition.

How to mitigate CVE-2018-0291

Install update from vendor's website.

Sources

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-nxossnmp

Improper input validation in Cisco NX-OS - CVE-2018-0291

Detailed vulnerability description

How to mitigate CVE-2018-0291

Sources

Please verify you're human