Details of VAR-201805-0512

ID

VAR-201805-0512

CVE

CVE-2018-0297

TITLE

Cisco Firepower Threat Defense Vulnerability related to failure of protection mechanism in software

Trust: 0.8

sources: JVNDB: JVNDB-2018-005421

DESCRIPTION

A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due to the incorrect handling of TCP SSL packets received out of order. An attacker could exploit this vulnerability by sending a crafted SSL connection through the affected device. A successful exploit could allow the attacker to bypass a configured SSL AC policy to block SSL traffic. Cisco Bug IDs: CSCvg09316. Cisco Firepower Threat Defense The software is vulnerable to a defect in the protection mechanism. Vendors have confirmed this vulnerability Bug ID CSCvg09316 It is released as.Information may be tampered with. Successfully exploiting this issue may allow an attacker to bypass certain security restrictions and perform unauthorized actions. The detection engine is one of the detection engines

Trust: 1.98

sources: NVD: CVE-2018-0297 // JVNDB: JVNDB-2018-005421 // BID: 104197 // VULHUB: VHN-118499

AFFECTED PRODUCTS

vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.1.0	Trust: 1.6
vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.0.0	Trust: 1.6
vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.2.0	Trust: 1.6
vendor:	cisco	model:	firepower threat defense	scope:	eq	version:	6.2.2	Trust: 1.6
vendor:	cisco	model:	firepower threat defense software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	firepower threat defense software	scope:	eq	version:	0	Trust: 0.3

sources: BID: 104197 // JVNDB: JVNDB-2018-005421 // CNNVD: CNNVD-201805-625 // NVD: CVE-2018-0297

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2018-0297
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2018-0297
value:	MEDIUM
Trust: 0.8
CNNVD:	CNNVD-201805-625
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-118499
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2018-0297
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
VULHUB:	VHN-118499
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2018-0297
baseSeverity:	MEDIUM
baseScore:	5.8
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	NONE
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	3.9
impactScore:	1.4
version:	3.0
Trust: 1.8

sources: VULHUB: VHN-118499 // JVNDB: JVNDB-2018-005421 // CNNVD: CNNVD-201805-625 // NVD: CVE-2018-0297

PROBLEMTYPE DATA

problemtype:

CWE-693

Trust: 1.9

sources: VULHUB: VHN-118499 // JVNDB: JVNDB-2018-005421 // NVD: CVE-2018-0297

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201805-625

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201805-625

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-005421

PATCH

title:	cisco-sa-20180516-firepwr-pb	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180516-firepwr-pb	Trust: 0.8
title:	Cisco Firepower Threat Defense detection Repair measures for engine security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=83550	Trust: 0.6

sources: JVNDB: JVNDB-2018-005421 // CNNVD: CNNVD-201805-625

EXTERNAL IDS

db:	NVD	id:	CVE-2018-0297	Trust: 2.8
db:	BID	id:	104197	Trust: 2.0
db:	JVNDB	id:	JVNDB-2018-005421	Trust: 0.8
db:	CNNVD	id:	CNNVD-201805-625	Trust: 0.6
db:	VULHUB	id:	VHN-118499	Trust: 0.1

sources: VULHUB: VHN-118499 // BID: 104197 // JVNDB: JVNDB-2018-005421 // CNNVD: CNNVD-201805-625 // NVD: CVE-2018-0297

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20180516-firepwr-pb	Trust: 2.0
url:	http://www.securityfocus.com/bid/104197	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-0297	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2018-0297	Trust: 0.8
url:	http://www.cisco.com/	Trust: 0.3

sources: VULHUB: VHN-118499 // BID: 104197 // JVNDB: JVNDB-2018-005421 // CNNVD: CNNVD-201805-625 // NVD: CVE-2018-0297

CREDITS

Cisco.

Trust: 0.3

sources: BID: 104197

SOURCES

db:	VULHUB	id:	VHN-118499
db:	BID	id:	104197
db:	JVNDB	id:	JVNDB-2018-005421
db:	CNNVD	id:	CNNVD-201805-625
db:	NVD	id:	CVE-2018-0297

LAST UPDATE DATE

2024-11-23T22:34:17.102000+00:00

SOURCES UPDATE DATE

db:	VULHUB	id:	VHN-118499	date:	2019-10-09T00:00:00
db:	BID	id:	104197	date:	2018-05-16T00:00:00
db:	JVNDB	id:	JVNDB-2018-005421	date:	2018-07-17T00:00:00
db:	CNNVD	id:	CNNVD-201805-625	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2018-0297	date:	2024-11-21T03:37:55.373

SOURCES RELEASE DATE

db:	VULHUB	id:	VHN-118499	date:	2018-05-17T00:00:00
db:	BID	id:	104197	date:	2018-05-16T00:00:00
db:	JVNDB	id:	JVNDB-2018-005421	date:	2018-07-17T00:00:00
db:	CNNVD	id:	CNNVD-201805-625	date:	2018-05-18T00:00:00
db:	NVD	id:	CVE-2018-0297	date:	2018-05-17T03:29:00.667