CVE-2018-0230Uncontrolled Resource Consumption in Cisco Adaptive Security Appliance Software

CWE-400Uncontrolled Resource Consumption4 documents4 sources
Severity
8.6HIGHNVD
EPSS
0.8%
top 25.30%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Cisco Adaptive Security Appliance SoftwareCisco Firepower Threat Defense
Timeline
PublishedApr 19
Latest updateMay 13

Description

A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Security Appliances could allow an unauthenticated, remote attacker to cause an affected device to stop processing traffic, resulting in a denial of service (DoS) condition. The vulnerability is due to the affected software improperly validating IP Version 4 (IPv4) and IP Version 6 (IPv6) packets after the software reassembles the packets (following IP

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

NVDcisco/firepower_threat_defense6.2.1, 6.2.2+1

🔴Vulnerability Details

2
GHSA
GHSA-wwrh-gqqp-fjq5: A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Secur2022-05-13
CVEList
CVE-2018-0230: A vulnerability in the internal packet-processing functionality of Cisco Firepower Threat Defense (FTD) Software for Cisco Firepower 2100 Series Secur2018-04-19

📋Vendor Advisories

1
Cisco
Cisco Firepower 2100 Series Security Appliances IP Fragmentation Denial of Service Vulnerability2018-04-18
CVE-2018-0230 — Uncontrolled Resource Consumption | cvebase