CVE-2018-0277
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-0277
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the Extensible Authentication Protocol-Transport Layer Security (EAP-TLS) certificate validation during EAP authentication for the Cisco Identity Services Engine (ISE) could allow an unauthenticated, remote attacker to cause the ISE application server to restart unexpectedly, causing a denial of service (DoS) condition on an affected system. The vulnerability is due to incomplete input validation of the client EAP-TLS certificate. An attacker could exploit this vulnerability by initiating EAP authentication over TLS to the ISE with a crafted EAP-TLS certificate. A successful exploit could allow the attacker to restart the ISE application server, resulting in a DoS condition on the affected system. The ISE application could continue to restart while the client attempts to establish the EAP authentication connection. If an attacker attempted to import the same EAP-TLS certificate to the ISE trust store, it could trigger a DoS condition on the affected system. This exploit vector would require the attacker to have valid administrator credentials. The vulnerability affects Cisco ISE, Cisco ISE Express, and Cisco ISE Virtual Appliance. Cisco Bug IDs: CSCve31857.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
证书验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Identity Services Engine 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Identity Services Engine(ISE)是美国思科(Cisco)公司的一款基于身份的环境感知平台(ISE身份服务引擎)。该平台通过收集网络、用户和设备中的实时信息,制定并实施相应策略来监管网络。ISE Express是一款提供动态客户功能的使用在ISE中的捆绑包。ISE Virtual Appliance是一款ISE虚拟设备。 Cisco ISE、ISE Express和ISE Virtual Appliance中的Extensible Authentication Prot
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Cisco Identity Services Engine | Cisco Identity Services Engine | - |
II. Public POCs for CVE-2018-0277
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-0277
Please Login to view more intelligence information
Same Patch Batch · n/a · 2018-05-17 · 41 CVEs total
| CVE-2018-0280 | Cisco Meeting Server 输入验证漏洞 | |
| CVE-2018-11230 | jbig2enc 安全漏洞 | |
| CVE-2018-11224 | Libav 安全漏洞 | |
| CVE-2018-11225 | libming 安全漏洞 | |
| CVE-2018-11226 | libming 安全漏洞 | |
| CVE-2018-0222 | Cisco Digital Network Architecture Center 安全漏洞 | |
| CVE-2018-0268 | Cisco Digital Network Architecture Center 安全漏洞 | |
| CVE-2018-0270 | Cisco IoT Field Network Director 跨站请求伪造漏洞 | |
| CVE-2018-0271 | Cisco Digital Network Architecture Center API gateway 授权问题漏洞 | |
| CVE-2018-0279 | Cisco Enterprise NFV Infrastructure Software Secure Copy Protocol服务器输入验证错误漏洞 | |
| CVE-2018-10027 | ESTsoft ALZip 安全漏洞 | |
| CVE-2018-0289 | Cisco Identity Services Engine logs组件跨站脚本漏洞 | |
| CVE-2018-0290 | Cisco SocialMiner 资源管理错误漏洞 | |
| CVE-2018-0297 | Cisco Firepower Threat Defense detection引擎安全漏洞 | |
| CVE-2018-0323 | Cisco Enterprise NFV Infrastructure Software 路径遍历漏洞 | |
| CVE-2018-0324 | Cisco Enterprise NFV Infrastructure Software CLI 命令注入漏洞 | |
| CVE-2018-0325 | Cisco IP Phone 7800 Series和Cisco IP Phone 8800 Series 输入验证漏洞 | |
| CVE-2018-0326 | Cisco TelePresence Server Software Web UI 安全漏洞 | |
| CVE-2018-0327 | Cisco Identity Services Engine 跨站脚本漏洞 | |
| CVE-2018-0328 | Cisco Unified Communications Manager和Cisco Unified Presence 输入验证漏洞 |
Showing top 20 of 41 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Cisco Identity Services Engine
Same vendor: n/a
- CVE-2026-6667
PgBouncer missing authorization check in KILL_CLIENT admin c - CVE-2026-6666
PgBouncer crash in kill_pool_logins_server_error - CVE-2026-6665
PgBouncer buffer overflow in SCRAM - CVE-2026-6664
PgBouncer integer overflow in PgBouncer network packet parsi - CVE-2026-8127
eladmin Users API Endpoint UserController.java checkLevel ac
Same weakness: CWE-295
- CVE-2026-42225
GnuTLS backend silently skips certificate chain verification - CVE-2026-5787
Ivanti EPMM证书验证漏洞影响12.6.1.1及更早版本 - CVE-2026-7821
Ivanti EPMM证书验证不当致信息泄露 - CVE-2026-42011
Gnutls: gnutls: security bypass due to incorrect name constr - CVE-2026-40243
Incus OVN TLS verification accepts peer-supplied roots and p
V. Comments for CVE-2018-0277
No comments yet