CVE-2018-0312
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-0312
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. The vulnerability exists because the affected software insufficiently validates Cisco Fabric Services packet headers when the software processes packet data. An attacker could exploit this vulnerability by sending a maliciously crafted Cisco Fabric Services packet to an affected device. A successful exploit could allow the attacker to cause a buffer overflow condition on the device, which could allow the attacker to execute arbitrary code or cause a DoS condition on the device. This vulnerability affects the following if configured to use Cisco Fabric Services: Firepower 4100 Series Next-Generation Firewalls, Firepower 9300 Security Appliance, MDS 9000 Series Multilayer Switches, Nexus 2000 Series Fabric Extenders, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Switches in standalone NX-OS mode, Nexus 9500 R-Series Line Cards and Fabric Modules, UCS 6100 Series Fabric Interconnects, UCS 6200 Series Fabric Interconnects, UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvd69962, CSCve02808, CSCve02810, CSCve02812, CSCve02819, CSCve02822, CSCve02831, CSCve04859.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
多款Cisco产品FXOS Software和NX-OS Software Fabric Services组件输入验证漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Firepower 4100 Series Next-Generation Firewalls等都是美国思科(Cisco)公司的产品。Cisco Firepower 4100 Series Next-Generation Firewalls是一款4100系列的防火墙设备。MDS 9000 Series Multilayer Switches是一款交换机设备。FXOS Software是一套运行在思科安全设备中的防火墙软件。NX-OS Software是运行在思科交换机设备中的一套数据中心级操作
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | Cisco FXOS and NX-OS unknown | Cisco FXOS and NX-OS unknown | - |
II. Public POCs for CVE-2018-0312
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-0312
Please Login to view more intelligence information
Same Patch Batch · n/a · 2018-06-20 · 29 CVEs total
| CVE-2018-12601 | sam2p 缓冲区错误漏洞 | |
| CVE-2018-12592 | Polycom RealPresence Web Suite 安全漏洞 | |
| CVE-2018-12591 | Ubiquiti EdgeSwitch 安全漏洞 | |
| CVE-2018-12590 | Ubiquiti EdgeSwitch 安全漏洞 | |
| CVE-2018-12446 | com.dropbox.android application for Android 安全漏洞 | |
| CVE-2018-12445 | com.dropbox.android application for Android 安全漏洞 | |
| CVE-2018-12594 | Reliable Controls MACH-ProWebCom 安全漏洞 | |
| CVE-2018-6563 | totemomail Encryption Gateway 跨站请求伪造漏洞 | |
| CVE-2018-12558 | Perl Email::Address模块安全漏洞 | |
| CVE-2018-12327 | NTP 缓冲区错误漏洞 | |
| CVE-2018-9036 | CheckSec Canopy 跨站脚本漏洞 | |
| CVE-2018-6211 | D-Link DIR-620 操作系统命令注入漏洞 | |
| CVE-2018-6212 | D-Link DIR-620 跨站脚本漏洞 | |
| CVE-2018-6213 | D-Link DIR-620 Web server 安全漏洞 | |
| CVE-2018-0291 | 多款Cisco产品NX-OS Software Simple Network Management Protocol input packet processor 安全漏洞 | |
| CVE-2018-12600 | ImageMagick 缓冲区错误漏洞 | |
| CVE-2018-12599 | ImageMagick 缓冲区错误漏洞 | |
| CVE-2018-12604 | GreenCMS 安全漏洞 | |
| CVE-2018-0330 | 多款Cisco产品NX-OS Software NX-API management API 权限许可和访问控制漏洞 | |
| CVE-2018-0314 | 多款Cisco产品FXOS Software和NX-OS Software Fabric Services组件输入验证漏洞 |
Showing top 20 of 29 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same product: Cisco FXOS and NX-OS unknown
- CVE-2018-0303
多款Cisco产品FXOS Software和NX-OS Software Discovery Protocol组件输入 - CVE-2018-0305
多款Cisco产品FXOS Software和NX-OS Software Fabric Services组件安全漏洞 - CVE-2018-0311
多款Cisco产品FXOS Software和NX-OS Software Fabric Services组件资源管理错 - CVE-2018-0310
多款Cisco产品FXOS Software和NX-OS Software Fabric Services组件资源管理错 - CVE-2018-0294
多款Cisco产品FXOS Software和NX-OS Software 权限许可和访问控制漏洞
Same vendor: n/a
- CVE-2026-8226
Open5GS types.c ogs_pcc_rule_install_flow_from_media denial - CVE-2026-8225
Open5GS delete Endpoint sm-sm.c pcf_npcf_smpolicycontrol_han - CVE-2026-8224
Open5GS PCF context.c pcf_sess_set_ipv6prefix denial of serv - CVE-2026-8223
Open5GS sm-policies Endpoint pcf_sess_sbi_discover_and_send - CVE-2026-8222
Open5GS sm-policies Endpoint nbsf-handler.c pcf_nbsf_managem
Same weakness: CWE-20
V. Comments for CVE-2018-0312
No comments yet