CVE-2018-0233 — Uncontrolled Resource Consumption in Cisco Secure Firewall Management Center

CWE-400 — Uncontrolled Resource Consumption4 documents4 sources

Severity

8.6HIGHNVD

EPSS

1.1%

top 21.62%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Secure Firewall Management Center

Timeline

PublishedApr 19

Latest updateMay 13

Description

A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could allow an unauthenticated, remote attacker to cause the detection engine to consume excessive system memory on an affected device, which could cause a denial of service (DoS) condition. The vulnerability is due to the affected software improperly handling changes to SSL connection states. An attacker could exploit this vulnerability by sending crafted …

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages1 packages

▶NVDcisco/secure_firewall_management_center5 versions+4

🔴Vulnerability Details

GHSA

GHSA-wchf-39q2-hfmr: A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could all↗2022-05-13

▶

CVEList

CVE-2018-0233: A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine in Cisco Firepower System Software could all↗2018-04-19

▶

📋Vendor Advisories

Cisco

Cisco Firepower Detection Engine Secure Sockets Layer Denial of Service Vulnerability↗2018-04-18

▶