Sign-up

ID

VAR-201804-1012


CVE

CVE-2018-0230


TITLE

Cisco Firepower Threat Defense Software depletion vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-004357

DESCRIPTION

A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to the affected software improperly validating IP Version 4 (IPv4) and IP Version 6 (IPv6) packets after the software reassembles the packets (following IP Fragmentation). An attacker could exploit this vulnerability by sending a series of malicious, fragmented IPv4 or IPv6 packets to an affected device. A successful exploit could allow the attacker to cause Snort processes on the affected device to hang at 100% CPU utilization, which could cause the device to stop processing traffic and result in a DoS condition until the device is reloaded manually. This vulnerability affects Cisco Firepower Threat Defense (FTD) Software Releases 6.2.1 and 6.2.2, if the software is running on a Cisco Firepower 2100 Series Security Appliance. Cisco Bug IDs: CSCvf91098. Vendors have confirmed this vulnerability Bug ID CSCvf91098 It is released as.Service operation interruption (DoS) There is a possibility of being put into a state. Exploiting this issue allows remote attackers to cause a denial-of-service condition due to excessive CPU consumption

Trust: 1.98

sources: NVD: CVE-2018-0230 // JVNDB: JVNDB-2018-004357 // BID: 103931 // VULHUB: VHN-118432

AFFECTED PRODUCTS

vendor:ciscomodel:firepower threat defensescope:eqversion:6.2.1

Trust: 1.6

vendor:ciscomodel:adaptive security appliance softwarescope:eqversion:9.8\(2\)

Trust: 1.6

vendor:ciscomodel:firepower threat defensescope:eqversion:6.2.2

Trust: 1.6

vendor:ciscomodel:firepower threat defense softwarescope:eqversion:6.2.2

Trust: 1.1

vendor:ciscomodel:firepower threat defense softwarescope:eqversion:6.2.1

Trust: 1.1

vendor:ciscomodel:adaptive security appliance softwarescope: - version: -

Trust: 0.8

vendor:ciscomodel:asa series firewallsscope:eqversion:5500-x9.8(2)

Trust: 0.3

vendor:ciscomodel:firepower threat defense softwarescope:neversion:6.2.2.1

Trust: 0.3

sources: BID: 103931 // JVNDB: JVNDB-2018-004357 // CNNVD: CNNVD-201804-1108 // NVD: CVE-2018-0230

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-0230
value: HIGH

Trust: 1.0

NVD: CVE-2018-0230
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201804-1108
value: HIGH

Trust: 0.6

VULHUB: VHN-118432
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2018-0230
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-118432
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-0230
baseSeverity: HIGH
baseScore: 8.6
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: CHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 4.0
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-118432 // JVNDB: JVNDB-2018-004357 // CNNVD: CNNVD-201804-1108 // NVD: CVE-2018-0230

PROBLEMTYPE DATA

problemtype:CWE-400

Trust: 1.9

sources: VULHUB: VHN-118432 // JVNDB: JVNDB-2018-004357 // NVD: CVE-2018-0230

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201804-1108

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201804-1108

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-004357

PATCH
title:cisco-sa-20180418-fp2100url:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-fp2100
Trust: 0.8
title:Cisco Firepower 2100 Series Security Appliances Firepower Threat Defense Software Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=81403
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2018-004357 // 
            
            
            
            CNNVD: CNNVD-201804-1108

EXTERNAL IDS
db:NVDid:CVE-2018-0230
Trust: 2.8
db:BIDid:103931
Trust: 2.0
db:JVNDBid:JVNDB-2018-004357
Trust: 0.8
db:CNNVDid:CNNVD-201804-1108
Trust: 0.7
db:VULHUBid:VHN-118432
Trust: 0.1
sources:
            
            
            VULHUB: VHN-118432 // 
            
            
            
            BID: 103931 // 
            
            
            
            JVNDB: JVNDB-2018-004357 // 
            
            
            
            CNNVD: CNNVD-201804-1108 // 
            
            
            
            NVD: CVE-2018-0230

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180418-fp2100
Trust: 2.0
url:http://www.securityfocus.com/bid/103931
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0230
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-0230
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-118432 // 
            
            
            
            BID: 103931 // 
            
            
            
            JVNDB: JVNDB-2018-004357 // 
            
            
            
            CNNVD: CNNVD-201804-1108 // 
            
            
            
            NVD: CVE-2018-0230

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 103931

SOURCES
db:VULHUBid:VHN-118432
db:BIDid:103931
db:JVNDBid:JVNDB-2018-004357
db:CNNVDid:CNNVD-201804-1108
db:NVDid:CVE-2018-0230

LAST UPDATE DATE
2024-11-23T21:39:01.225000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-118432date:2019-10-09T00:00:00
db:BIDid:103931date:2018-04-18T00:00:00
db:JVNDBid:JVNDB-2018-004357date:2018-06-19T00:00:00
db:CNNVDid:CNNVD-201804-1108date:2019-10-17T00:00:00
db:NVDid:CVE-2018-0230date:2024-11-21T03:37:46.897

SOURCES RELEASE DATE
db:VULHUBid:VHN-118432date:2018-04-19T00:00:00
db:BIDid:103931date:2018-04-18T00:00:00
db:JVNDBid:JVNDB-2018-004357date:2018-06-19T00:00:00
db:CNNVDid:CNNVD-201804-1108date:2018-04-19T00:00:00
db:NVDid:CVE-2018-0230date:2018-04-19T20:29:00.473