#VU16930 Resource exhaustion in Cisco Secure Firewall Management Center (formerly Firepower Management Center, FMC) - CVE-2018-15458
Published: January 9, 2019 / Updated: January 10, 2019
Vulnerability identifier: #VU16930
Vulnerability risk: Low
CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:L/SC:N/SI:N/SA:N/E:U/U:Clear
CVE-ID: CVE-2018-15458
CWE-ID: CWE-400
Exploitation vector: Remote access
Exploit availability:
No public exploit available
Vulnerable software:
Cisco Secure Firewall Management Center (formerly Firepower Management Center, FMC)
Cisco Secure Firewall Management Center (formerly Firepower Management Center, FMC)
Software vendor:
Cisco Systems, Inc
Cisco Systems, Inc
Description
The vulnerability allows a remote attacker to cause DoS condition.
The vulnerability exists due to the configuration of the Shell Access Filter, when used with a specific type of remote authentication, can cause a system file to have unbounded writes. A remote attacker can send a steady stream of remote authentication requests to the appliance when the specific configuration is applied, increase the size of a system log file so that it consumes most of the disk space and cause a DoS condition in which the device functions could operate abnormally, making the device unstable.
Remediation
The vulnerability has been fixed in the version 6.2.3.7.