CVE-2018-0161

Published Mar 28, 2018

Last updated 3 days ago

Exploit known CVSS medium 6.3

Overview

Description: A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software running on certain models of Cisco Catalyst Switches could allow an authenticated, remote attacker to cause a denial of service (DoS) condition, aka a GET MIB Object ID Denial of Service Vulnerability. The vulnerability is due to a condition that could occur when the affected software processes an SNMP read request that contains a request for the ciscoFlashMIB object ID (OID). An attacker could trigger this vulnerability by issuing an SNMP GET request for the ciscoFlashMIB OID on an affected device. A successful exploit could cause the affected device to restart due to a SYS-3-CPUHOG. This vulnerability affects the following Cisco devices if they are running a vulnerable release of Cisco IOS Software and are configured to use SNMP Version 2 (SNMPv2) or SNMP Version 3 (SNMPv3): Cisco Catalyst 2960-L Series Switches, Cisco Catalyst Digital Building Series Switches 8P, Cisco Catalyst Digital Building Series Switches 8U. Cisco Bug IDs: CSCvd89541.
Source: ykramarz@cisco.com
NVD status: Modified

Risk scores

CVSS 3.1

Type: Primary
Base score: 6.3
Impact score: 4
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:C/C:N/I:N/A:H
Severity: MEDIUM

CVSS 2.0

Type: Primary
Base score: 6.3
Impact score: 6.9
Exploitability score: 6.8
Vector string: AV:N/AC:M/Au:S/C:N/I:N/A:C

Known exploits

Data from CISA

Vulnerability name: Cisco IOS Software Resource Management Errors Vulnerability
Exploit added on: Mar 3, 2022
Exploit action due: Mar 17, 2022
Required action: Apply updates per vendor instructions.

Weaknesses

ykramarz@cisco.com: CWE-399
nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:cisco:ios:15.2\\(5\\)e:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F112DE64-0042-4FB9-945D-3107468193E5"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-16ps-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "923B1623-2A33-497B-9238-3F4699E8E4AA"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-16ts-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "762B1BA4-69FC-4977-A0A8-9323660674A2"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-24pq-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "343AD12E-387D-4494-9665-45384927C043"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-24ps-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "F249629F-1A5C-4C12-B956-552A2526A836"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-24tq-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B6F7347D-C59F-4432-8706-A49732F691D2"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-24ts-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3C9AF097-09D6-4388-85EA-5954BD40D6B4"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-48pq-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "B7CB5149-90DE-4C56-B252-0BE74CB84B19"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-48ps-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "949533D3-6500-49BA-BE55-42E1506D3DD6"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-48tq-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "26876A8C-F6C9-4FBA-8085-DD9A042CF77D"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-48ts-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "94E5B561-02A2-4F79-8E28-E6A2B5C4F09D"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-8ps-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "1EBE7411-BD02-47A8-99BC-6B701B60A61B"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_2960l-8ts-ll:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "96195B6B-C869-4DEF-AB5D-704B3D2FC76E"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_digital_building_series_switches-8p:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "6A3A9D61-C142-4444-A7EF-A5B31DC9E05A"
          },
          {
            "criteria": "cpe:2.3:h:cisco:catalyst_digital_building_series_switches-8u:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "40DC7D1C-825E-4807-A90A-CF99A4DA7CD3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Known exploits

Weaknesses

Social media

Configurations

References