CVE-2018-0333 — Protection Mechanism Failure in Cisco Secure Firewall Management Center

CWE-693 — Protection Mechanism Failure4 documents4 sources

Severity

5.8MEDIUMNVD

EPSS

0.2%

top 61.92%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Secure Firewall Management Center

Timeline

PublishedJun 7

Latest updateMay 13

Description

A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass VPN security due to unintended side effects of dynamic configuration changes that could allow an attacker to bypass configured policies. The vulnerability is due to incorrect management of the configured interface names and VPN parameters when dynamic CLI configuration changes are performed. An attacker could exploit this vulnerability by sending packet…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:N/A:NExploitability: 3.9 | Impact: 1.4

Affected Packages1 packages

▶NVDcisco/secure_firewall_management_center6.2.2

🔴Vulnerability Details

GHSA

GHSA-3mhr-frr8-qmc6: A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass VPN s↗2022-05-13

▶

CVEList

CVE-2018-0333: A vulnerability in the VPN configuration management of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass VPN s↗2018-06-07

▶

📋Vendor Advisories

Cisco

Cisco FireSIGHT System VPN Policy Bypass Vulnerability↗2018-06-06

▶