ID

VAR-201901-0590


CVE

CVE-2018-15458


TITLE

Cisco Firepower Management Center Resource management vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-014421

DESCRIPTION

A vulnerability in the Shell Access Filter feature of Cisco Firepower Management Center (FMC), when used in conjunction with remote authentication, could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability occurs because the configuration of the Shell Access Filter, when used with a specific type of remote authentication, can cause a system file to have unbounded writes. An attacker could exploit this vulnerability by sending a steady stream of remote authentication requests to the appliance when the specific configuration is applied. Successful exploitation could allow the attacker to increase the size of a system log file so that it consumes most of the disk space. The lack of available disk space could lead to a DoS condition in which the device functions could operate abnormally, making the device unstable. Cisco Firepower Management Center (FMC) Contains a resource management vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Attackers can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCvk20751

Trust: 1.98

sources: NVD: CVE-2018-15458 // JVNDB: JVNDB-2018-014421 // BID: 106516 // VULHUB: VHN-125719

AFFECTED PRODUCTS

vendor:ciscomodel:firepower management centerscope:eqversion:6.2.2

Trust: 1.3

vendor:ciscomodel:firepower management centerscope:eqversion:6.2.3

Trust: 1.3

vendor:ciscomodel:firepower management centerscope:eqversion:6.3.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower management centerscope:eqversion:6.3

Trust: 0.3

vendor:ciscomodel:firepower management centerscope:neversion:6.2.3.7

Trust: 0.3

sources: BID: 106516 // JVNDB: JVNDB-2018-014421 // NVD: CVE-2018-15458

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-15458
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2018-15458
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-15458
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201901-302
value: HIGH

Trust: 0.6

VULHUB: VHN-125719
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-15458
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-125719
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-15458
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.0

Trust: 1.8

ykramarz@cisco.com: CVE-2018-15458
baseSeverity: MEDIUM
baseScore: 5.3
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: LOW
exploitabilityScore: 3.9
impactScore: 1.4
version: 3.0

Trust: 1.0

sources: VULHUB: VHN-125719 // JVNDB: JVNDB-2018-014421 // CNNVD: CNNVD-201901-302 // NVD: CVE-2018-15458 // NVD: CVE-2018-15458

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.9

problemtype:CWE-770

Trust: 1.1

sources: VULHUB: VHN-125719 // JVNDB: JVNDB-2018-014421 // NVD: CVE-2018-15458

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201901-302

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201901-302

CONFIGURATIONS

sources: JVNDB: JVNDB-2018-014421

PATCH

title:cisco-sa-20190109-fpwr-mc-dosurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-fpwr-mc-dos

Trust: 0.8

title:Cisco Firepower Management Center Remediation of resource management error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=88505

Trust: 0.6

sources: JVNDB: JVNDB-2018-014421 // CNNVD: CNNVD-201901-302

EXTERNAL IDS

db:NVDid:CVE-2018-15458

Trust: 2.8

db:BIDid:106516

Trust: 2.0

db:JVNDBid:JVNDB-2018-014421

Trust: 0.8

db:CNNVDid:CNNVD-201901-302

Trust: 0.7

db:VULHUBid:VHN-125719

Trust: 0.1

sources: VULHUB: VHN-125719 // BID: 106516 // JVNDB: JVNDB-2018-014421 // CNNVD: CNNVD-201901-302 // NVD: CVE-2018-15458

REFERENCES

url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190109-fpwr-mc-dos

Trust: 2.0

url:http://www.securityfocus.com/bid/106516

Trust: 1.7

url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-15458

Trust: 0.8

url:https://nvd.nist.gov/vuln/detail/cve-2018-15458

Trust: 0.8

url:https://software.cisco.com/download/home/286259685

Trust: 0.3

url:http://www.cisco.com/

Trust: 0.3

sources: VULHUB: VHN-125719 // BID: 106516 // JVNDB: JVNDB-2018-014421 // CNNVD: CNNVD-201901-302 // NVD: CVE-2018-15458

CREDITS

This vulnerability was found during internal security testing.

Trust: 0.6

sources: CNNVD: CNNVD-201901-302

SOURCES

db:VULHUBid:VHN-125719
db:BIDid:106516
db:JVNDBid:JVNDB-2018-014421
db:CNNVDid:CNNVD-201901-302
db:NVDid:CVE-2018-15458

LAST UPDATE DATE

2024-08-14T15:34:05.926000+00:00


SOURCES UPDATE DATE

db:VULHUBid:VHN-125719date:2019-10-09T00:00:00
db:BIDid:106516date:2019-01-09T00:00:00
db:JVNDBid:JVNDB-2018-014421date:2019-03-22T00:00:00
db:CNNVDid:CNNVD-201901-302date:2019-10-17T00:00:00
db:NVDid:CVE-2018-15458date:2019-10-09T23:35:40.797

SOURCES RELEASE DATE

db:VULHUBid:VHN-125719date:2019-01-10T00:00:00
db:BIDid:106516date:2019-01-09T00:00:00
db:JVNDBid:JVNDB-2018-014421date:2019-03-22T00:00:00
db:CNNVDid:CNNVD-201901-302date:2019-01-10T00:00:00
db:NVDid:CVE-2018-15458date:2019-01-10T19:29:00.517