Sign-up

ID

VAR-201901-0590


CVE

CVE-2018-15458


TITLE

Cisco Firepower Management Center Resource management vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-014421

DESCRIPTION

A vulnerability in the Shell Access Filter feature of Cisco Firepower Management Center (FMC), when used in conjunction with remote authentication, could allow an unauthenticated, remote attacker to cause high disk utilization, resulting in a denial of service (DoS) condition. The vulnerability occurs because the configuration of the Shell Access Filter, when used with a specific type of remote authentication, can cause a system file to have unbounded writes. An attacker could exploit this vulnerability by sending a steady stream of remote authentication requests to the appliance when the specific configuration is applied. Successful exploitation could allow the attacker to increase the size of a system log file so that it consumes most of the disk space. The lack of available disk space could lead to a DoS condition in which the device functions could operate abnormally, making the device unstable. Cisco Firepower Management Center (FMC) Contains a resource management vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. Attackers can exploit this issue to cause a denial-of-service condition, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCvk20751

Trust: 1.98

sources: NVD: CVE-2018-15458 // JVNDB: JVNDB-2018-014421 // BID: 106516 // VULHUB: VHN-125719

AFFECTED PRODUCTS

vendor:ciscomodel:firepower management centerscope:eqversion:6.2.2

Trust: 1.3

vendor:ciscomodel:firepower management centerscope:eqversion:6.2.3

Trust: 1.3

vendor:ciscomodel:firepower management centerscope:eqversion:6.3.0

Trust: 1.0

vendor:ciscomodel:firepower management centerscope: - version: -

Trust: 0.8

vendor:ciscomodel:firepower management centerscope:eqversion:6.3

Trust: 0.3

vendor:ciscomodel:firepower management centerscope:neversion:6.2.3.7

Trust: 0.3

sources: BID: 106516 // JVNDB: JVNDB-2018-014421 // NVD: CVE-2018-15458

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2018-15458
value: HIGH

Trust: 1.0

ykramarz@cisco.com: CVE-2018-15458
value: MEDIUM

Trust: 1.0

NVD: CVE-2018-15458
value: HIGH

Trust: 0.8

CNNVD: CNNVD-201901-302
value: HIGH

Trust: 0.6

VULHUB: VHN-125719
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2018-15458
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-125719
severity: MEDIUM
baseScore: 5.0
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 10.0
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2018-15458
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.0

Trust: 1.8

ykramarz@cisco.com: CVE-2018-15458
baseSeverity: MEDIUM
baseScore: 5.3
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: LOW
exploitabilityScore: 3.9
impactScore: 1.4
version: 3.0

Trust: 1.0

sources: VULHUB: VHN-125719 // JVNDB: JVNDB-2018-014421 // CNNVD: CNNVD-201901-302 // NVD: CVE-2018-15458 // NVD: CVE-2018-15458

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.9

problemtype:CWE-770

Trust: 1.1

sources: VULHUB: VHN-125719 // JVNDB: JVNDB-2018-014421 // NVD: CVE-2018-15458

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201901-302

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201901-302

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-014421

PATCH
title:cisco-sa-20190109-fpwr-mc-dosurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190109-fpwr-mc-dos
Trust: 0.8
title:Cisco Firepower Management Center Remediation of resource management error vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=88505
Trust: 0.6
sources:
            
            
            JVNDB: JVNDB-2018-014421 // 
            
            
            
            CNNVD: CNNVD-201901-302

EXTERNAL IDS
db:NVDid:CVE-2018-15458
Trust: 2.8
db:BIDid:106516
Trust: 2.0
db:JVNDBid:JVNDB-2018-014421
Trust: 0.8
db:CNNVDid:CNNVD-201901-302
Trust: 0.7
db:VULHUBid:VHN-125719
Trust: 0.1
sources:
            
            
            VULHUB: VHN-125719 // 
            
            
            
            BID: 106516 // 
            
            
            
            JVNDB: JVNDB-2018-014421 // 
            
            
            
            CNNVD: CNNVD-201901-302 // 
            
            
            
            NVD: CVE-2018-15458

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190109-fpwr-mc-dos
Trust: 2.0
url:http://www.securityfocus.com/bid/106516
Trust: 1.7
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-15458
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2018-15458
Trust: 0.8
url:https://software.cisco.com/download/home/286259685
Trust: 0.3
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            VULHUB: VHN-125719 // 
            
            
            
            BID: 106516 // 
            
            
            
            JVNDB: JVNDB-2018-014421 // 
            
            
            
            CNNVD: CNNVD-201901-302 // 
            
            
            
            NVD: CVE-2018-15458

CREDITS
This vulnerability was found during internal security testing.
Trust: 0.6
sources:
            
            
            CNNVD: CNNVD-201901-302

SOURCES
db:VULHUBid:VHN-125719
db:BIDid:106516
db:JVNDBid:JVNDB-2018-014421
db:CNNVDid:CNNVD-201901-302
db:NVDid:CVE-2018-15458

LAST UPDATE DATE
2024-08-14T15:34:05.926000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-125719date:2019-10-09T00:00:00
db:BIDid:106516date:2019-01-09T00:00:00
db:JVNDBid:JVNDB-2018-014421date:2019-03-22T00:00:00
db:CNNVDid:CNNVD-201901-302date:2019-10-17T00:00:00
db:NVDid:CVE-2018-15458date:2019-10-09T23:35:40.797

SOURCES RELEASE DATE
db:VULHUBid:VHN-125719date:2019-01-10T00:00:00
db:BIDid:106516date:2019-01-09T00:00:00
db:JVNDBid:JVNDB-2018-014421date:2019-03-22T00:00:00
db:CNNVDid:CNNVD-201901-302date:2019-01-10T00:00:00
db:NVDid:CVE-2018-15458date:2019-01-10T19:29:00.517