CVE-2018-0155 - Vulnerability Details

A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is incomplete. An attacker could exploit this vulnerability by sending a crafted BFD message to or across an affected switch. A successful exploit could allow the attacker to trigger a reload of the system. This vulnerability affects Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5), Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is in the KEV database since March 3, 2022.

Exploitation active

Automatable yes

Technical Impact partial

Vendors	Products
Cisco	Catalyst 4500-x Series Switches \(k10\) Catalyst 4500 Supervisor Engine 6-e \(k5\) Catalyst 4500 Supervisor Engine 6l-e \(k10\) Catalyst 4500 Supervisor Engine 7-e \(k10\) Catalyst 4500 Supervisor Engine 7l-e \(k10\) Catalyst 4500e Supervisor Engine 8-e \(k10\) Catalyst 4500e Supervisor Engine 8l-e \(k10\) Catalyst 4500e Supervisor Engine 9-e \(k10\) Catalyst 4900m Switch \(k5\) Catalyst 4948e Ethernet Switch \(k5\) Ios Ios Xe
Rockwellautomation	Allen-bradley Stratix 8300 Industrial Managed Ethernet Switch

Configuration 1 [-]

AND

OR	cpe:2.3:o:cisco:ios:3.6\(2\)e:::::::*
	cpe:2.3:o:cisco:ios_xe:3.6\(2\)e:::::::*

OR	cpe:2.3:h:cisco:catalyst_4500-x_series_switches_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_6-e_\(k5\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_6l-e_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_7-e_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_7l-e_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500e_supervisor_engine_8-e_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500e_supervisor_engine_8l-e_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4500e_supervisor_engine_9-e_\(k10\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4900m_switch_\(k5\):-:::::::*
	cpe:2.3:h:cisco:catalyst_4948e_ethernet_switch_\(k5\):-:::::::*

Configuration 2 [-]

AND

OR	cpe:2.3:o:cisco:ios:3.6\(2\)e:::::::*
	cpe:2.3:o:cisco:ios_xe:3.6\(2\)e:::::::*

cpe:2.3:h:rockwellautomation:allen-bradley_stratix_8300_industrial_managed_ethernet_switch:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://www.securityfocus.com/bid/103565
http://www.securitytracker.com/id/1040587
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd

History

Fri, 15 Nov 2024 18:15:00 +0000

Type	Values Removed	Values Added
Metrics		kev `{'dateAdded': '2022-03-03'}` ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2018-03-28T22:00:00

Updated: 2024-11-15T17:53:56.495Z

Reserved: 2017-11-27T00:00:00

Link: CVE-2018-0155

Vulnrichment

Updated: 2024-08-05T03:14:16.886Z

NVD

Status : Analyzed

Published: 2018-03-28T22:29:00.420

Modified: 2025-01-27T20:10:19.450

Link: CVE-2018-0155

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "Cisco IOS and IOS XE", "vendor": "n/a", "versions": [{"status": "affected", "version": "Cisco IOS and IOS XE"}]}], "datePublic": "2018-03-28T00:00:00", "descriptions": [{"lang": "en", "value": "A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is incomplete. An attacker could exploit this vulnerability by sending a crafted BFD message to or across an affected switch. A successful exploit could allow the attacker to trigger a reload of the system. This vulnerability affects Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5), Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729."}], "problemTypes": [{"descriptions": [{"cweId": "CWE-388", "description": "CWE-388", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"dateUpdated": "2018-04-19T13:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "1040587", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1040587"}, {"name": "103565", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/103565"}, {"tags": ["x_refsource_CONFIRM"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd"}, {"tags": ["x_refsource_MISC"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2018-0155", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "Cisco IOS and IOS XE", "version": {"version_data": [{"version_value": "Cisco IOS and IOS XE"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is incomplete. An attacker could exploit this vulnerability by sending a crafted BFD message to or across an affected switch. A successful exploit could allow the attacker to trigger a reload of the system. This vulnerability affects Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5), Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-388"}]}]}, "references": {"reference_data": [{"name": "1040587", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1040587"}, {"name": "103565", "refsource": "BID", "url": "http://www.securityfocus.com/bid/103565"}, {"name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd", "refsource": "CONFIRM", "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd"}, {"name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05", "refsource": "MISC", "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T03:14:16.886Z"}, "title": "CVE Program Container", "references": [{"name": "1040587", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1040587"}, {"name": "103565", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/103565"}, {"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05"}]}, {"metrics": [{"other": {"type": "ssvc", "content": {"timestamp": "2024-11-08T17:28:14.365306Z", "id": "CVE-2018-0155", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "role": "CISA Coordinator", "version": "2.0.3"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2022-03-03", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2018-0155"}}}], "title": "CISA ADP Vulnrichment", "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-15T17:53:56.495Z"}}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2018-0155", "datePublished": "2018-03-28T22:00:00", "dateReserved": "2017-11-27T00:00:00", "dateUpdated": "2024-11-15T17:53:56.495Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"dataType": "CVE_RECORD", "containers": {"adp": [{"title": "CVE Program Container", "references": [{"url": "http://www.securitytracker.com/id/1040587", "name": "1040587", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"]}, {"url": "http://www.securityfocus.com/bid/103565", "name": "103565", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"]}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd", "tags": ["x_refsource_CONFIRM", "x_transferred"]}, {"url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05", "tags": ["x_refsource_MISC", "x_transferred"]}], "providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-05T03:14:16.886Z"}}, {"title": "CISA ADP Vulnrichment", "metrics": [{"other": {"type": "ssvc", "content": {"id": "CVE-2018-0155", "role": "CISA Coordinator", "options": [{"Exploitation": "active"}, {"Automatable": "yes"}, {"Technical Impact": "partial"}], "version": "2.0.3", "timestamp": "2024-11-08T17:28:14.365306Z"}}}, {"other": {"type": "kev", "content": {"dateAdded": "2022-03-03", "reference": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2018-0155"}}}], "providerMetadata": {"orgId": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "shortName": "CISA-ADP", "dateUpdated": "2024-11-08T16:06:39.343Z"}}], "cna": {"affected": [{"vendor": "n/a", "product": "Cisco IOS and IOS XE", "versions": [{"status": "affected", "version": "Cisco IOS and IOS XE"}]}], "datePublic": "2018-03-28T00:00:00", "references": [{"url": "http://www.securitytracker.com/id/1040587", "name": "1040587", "tags": ["vdb-entry", "x_refsource_SECTRACK"]}, {"url": "http://www.securityfocus.com/bid/103565", "name": "103565", "tags": ["vdb-entry", "x_refsource_BID"]}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd", "tags": ["x_refsource_CONFIRM"]}, {"url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05", "tags": ["x_refsource_MISC"]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is incomplete. An attacker could exploit this vulnerability by sending a crafted BFD message to or across an affected switch. A successful exploit could allow the attacker to trigger a reload of the system. This vulnerability affects Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5), Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729."}], "problemTypes": [{"descriptions": [{"lang": "en", "type": "CWE", "cweId": "CWE-388", "description": "CWE-388"}]}], "providerMetadata": {"orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco", "dateUpdated": "2018-04-19T13:57:01"}, "x_legacyV4Record": {"affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"version": {"version_data": [{"version_value": "Cisco IOS and IOS XE"}]}, "product_name": "Cisco IOS and IOS XE"}]}, "vendor_name": "n/a"}]}}, "data_type": "CVE", "references": {"reference_data": [{"url": "http://www.securitytracker.com/id/1040587", "name": "1040587", "refsource": "SECTRACK"}, {"url": "http://www.securityfocus.com/bid/103565", "name": "103565", "refsource": "BID"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd", "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd", "refsource": "CONFIRM"}, {"url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05", "name": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05", "refsource": "MISC"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "eng", "value": "A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is incomplete. An attacker could exploit this vulnerability by sending a crafted BFD message to or across an affected switch. A successful exploit could allow the attacker to trigger a reload of the system. This vulnerability affects Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5), Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "CWE-388"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2018-0155", "STATE": "PUBLIC", "ASSIGNER": "psirt@cisco.com"}}}}, "cveMetadata": {"cveId": "CVE-2018-0155", "state": "PUBLISHED", "dateUpdated": "2024-11-15T17:53:56.495Z", "dateReserved": "2017-11-27T00:00:00", "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "datePublished": "2018-03-28T22:00:00", "assignerShortName": "cisco"}, "dataVersion": "5.1"}

{"cisaActionDue": "2022-03-17", "cisaExploitAdd": "2022-03-03", "cisaRequiredAction": "Apply updates per vendor instructions.", "cisaVulnerabilityName": "Cisco Catalyst Bidirectional Forwarding Detection Denial-of-Service Vulnerability", "configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:3.6\\(2\\)e:*:*:*:*:*:*:*", "matchCriteriaId": "3ACD48AE-B818-40CE-848B-90B9BF1D4255", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6\\(2\\)e:*:*:*:*:*:*:*", "matchCriteriaId": "0D9506FB-B290-44AF-80A1-F698BEC3CBC0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:cisco:catalyst_4500-x_series_switches_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D720B575-15F7-49CA-AA2F-8594982DF9A0", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_6-e_\\(k5\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D0C6A995-0878-49E6-B314-2278C8EB0E7E", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_6l-e_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "06BF802C-C57A-402C-8EC2-E6176CB0FF86", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_7-e_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "9832B73C-116D-4F81-9DE8-1BA930648E3F", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500_supervisor_engine_7l-e_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "43AB5E31-8D8F-4009-9D6D-23C03EC9319A", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500e_supervisor_engine_8-e_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "663DCB07-F6B6-4DC6-8373-742A7C117E44", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500e_supervisor_engine_8l-e_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "229DF042-CEF2-4D1E-9197-3656919BF917", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4500e_supervisor_engine_9-e_\\(k10\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "D8F261DC-26E4-48DC-A900-C41BF6CB4557", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4900m_switch_\\(k5\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "CF434413-83D7-4D41-B9BF-4DF258B491E0", "vulnerable": false}, {"criteria": "cpe:2.3:h:cisco:catalyst_4948e_ethernet_switch_\\(k5\\):-:*:*:*:*:*:*:*", "matchCriteriaId": "BC27EF7D-924D-493C-B3C3-AC17EE9E5D44", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios:3.6\\(2\\)e:*:*:*:*:*:*:*", "matchCriteriaId": "3ACD48AE-B818-40CE-848B-90B9BF1D4255", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:ios_xe:3.6\\(2\\)e:*:*:*:*:*:*:*", "matchCriteriaId": "0D9506FB-B290-44AF-80A1-F698BEC3CBC0", "vulnerable": true}], "negate": false, "operator": "OR"}, {"cpeMatch": [{"criteria": "cpe:2.3:h:rockwellautomation:allen-bradley_stratix_8300_industrial_managed_ethernet_switch:-:*:*:*:*:*:*:*", "matchCriteriaId": "E96AE552-ABC5-4101-ACF6-B7F20FFB4043", "vulnerable": false}], "negate": false, "operator": "OR"}], "operator": "AND"}], "cveTags": [], "descriptions": [{"lang": "en", "value": "A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling when the BFD header in a BFD packet is incomplete. An attacker could exploit this vulnerability by sending a crafted BFD message to or across an affected switch. A successful exploit could allow the attacker to trigger a reload of the system. This vulnerability affects Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5), Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729."}, {"lang": "es", "value": "Una vulnerabilidad en la implementaci\u00f3n de la descarga Bidirectional Forwarding Detection (BFD) de Cisco Catalyst 4500 Series Switches y Cisco Catalyst 4500-X Series Switches podr\u00eda permitir que un atacante remoto no autenticado provoque el cierre inesperado del proceso iosd, lo que provocar\u00eda una denegaci\u00f3n de servicio (DoS). La vulnerabilidad se debe a la gesti\u00f3n insuficiente de errores cuando la cabecera BFD de un paquete BFD est\u00e1 incompleta. Un atacante podr\u00eda explotar esta vulnerabilidad enviando un mensaje BFD manipulado a un switch afectado o a trav\u00e9s de \u00e9l. Un exploit con \u00e9xito podr\u00eda permitir que el atacante cause el reinicio del sistema. Esta vulnerabilidad afecta a Catalyst 4500 Supervisor Engine 6-E (K5), Catalyst 4500 Supervisor Engine 6L-E (K10), Catalyst 4500 Supervisor Engine 7-E (K10), Catalyst 4500 Supervisor Engine 7L-E (K10), Catalyst 4500E Supervisor Engine 8-E (K10), Catalyst 4500E Supervisor Engine 8L-E (K10), Catalyst 4500E Supervisor Engine 9-E (K10), Catalyst 4500-X Series Switches (K10), Catalyst 4900M Switch (K5) y Catalyst 4948E Ethernet Switch (K5). Cisco Bug IDs: CSCvc40729."}], "id": "CVE-2018-0155", "lastModified": "2025-01-27T20:10:19.450", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "HIGH", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "COMPLETE", "baseScore": 7.8, "confidentialityImpact": "NONE", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 6.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}], "cvssMetricV31": [{"cvssData": {"attackComplexity": "LOW", "attackVector": "NETWORK", "availabilityImpact": "HIGH", "baseScore": 8.6, "baseSeverity": "HIGH", "confidentialityImpact": "NONE", "integrityImpact": "NONE", "privilegesRequired": "NONE", "scope": "CHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "version": "3.1"}, "exploitabilityScore": 3.9, "impactScore": 4.0, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2018-03-28T22:29:00.420", "references": [{"source": "psirt@cisco.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/103565"}, {"source": "psirt@cisco.com", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040587"}, {"source": "psirt@cisco.com", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05"}, {"source": "psirt@cisco.com", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securityfocus.com/bid/103565"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "VDB Entry"], "url": "http://www.securitytracker.com/id/1040587"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Third Party Advisory", "US Government Resource"], "url": "https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-bfd"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Analyzed", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-388"}], "source": "psirt@cisco.com", "type": "Secondary"}, {"description": [{"lang": "en", "value": "CWE-755"}], "source": "nvd@nist.gov", "type": "Primary"}]}

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Changed

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

Exploitation active

Automatable yes

Technical Impact partial

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object