CVE-2018-0252 — Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco Wireless LAN Controller

CWE-399 CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer4 documents4 sources

Severity

8.6HIGHNVD

EPSS

0.5%

top 34.68%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Wireless LAN Controller Cisco Wireless LAN Controller Software

Timeline

PublishedMay 2

Latest updateMay 13

Description

A vulnerability in the IP Version 4 (IPv4) fragment reassembly function of Cisco 3500, 5500, and 8500 Series Wireless LAN Controller Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a corruption of an internal data structure process that occurs when the affected software reassembles certain IPv4 packets. An attacker could exploit this vulnerability by sending …

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

▶NVDcisco/wireless_lan_controller_software4 versions+3

▶CVEListV5cisco/cisco_wireless_lan_controllerCisco Wireless LAN Controller

🔴Vulnerability Details

GHSA

GHSA-rfmq-5r75-j8r9: A vulnerability in the IP Version 4 (IPv4) fragment reassembly function of Cisco 3500, 5500, and 8500 Series Wireless LAN Controller Software could al↗2022-05-13

▶

CVEList

CVE-2018-0252: A vulnerability in the IP Version 4 (IPv4) fragment reassembly function of Cisco 3500, 5500, and 8500 Series Wireless LAN Controller Software could al↗2018-05-02

▶

📋Vendor Advisories

Cisco

Cisco Wireless LAN Controller IP Fragment Reassembly Denial of Service Vulnerability↗2018-05-02

▶