Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2018-0456— Cisco NX-OS Software Authenticated Simple Network Management Protocol Denial of Service Vulnerability

EPSS 0.94% · P76
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2018-0456

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
Cisco NX-OS Software Authenticated Simple Network Management Protocol Denial of Service Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application of an affected device to restart unexpectedly. The vulnerability is due to improper validation of SNMP protocol data units (PDUs) in SNMP packets. An attacker could exploit this vulnerability by sending a crafted SNMP packet to an affected device. A successful exploit could allow the attacker to cause the SNMP application to restart multiple times, leading to a system-level restart and a denial of service (DoS) condition.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco NX-OS Software 输入验证漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Nexus 3000 Series Switches等都是美国思科(Cisco)公司的产品。Cisco Nexus 3000 Series Switches是一款3000系列的交换机。Nexus 9500 R-Series Line Cards and Fabric Modules是一款9500 R系列线卡模块。NX-OS Software是运行在其中的一套交换机使用的数据中心级操作系统软件。 Cisco NX-OS Software中的Simple Network Management Pr
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
CiscoCisco NX-OS Software for Nexus 3000 Series 7.0(3)I7(3) n/a -

II. Public POCs for CVE-2018-0456

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2018-0456

登录查看更多情报信息。

Same Patch Batch · Cisco · 2018-10-17 · 15 CVEs total

CVE-2018-0388Cisco Wireless LAN Controller Software Cross-Site Scripting Vulnerability
CVE-2018-0416Cisco Wireless LAN Controller Software Information Disclosure Vulnerability
CVE-2018-0395Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerabilit
CVE-2018-15395Cisco Wireless LAN Controller Software Privilege Escalation Vulnerability
CVE-2018-15402Cisco Enterprise NFV Infrastructure Software Cross-Site Request Forgery Vulnerability
CVE-2018-0378Cisco NX-OS Software for Nexus 5500, 5600, and 6000 Series Switches Precision Time Protoco
CVE-2018-0417Cisco Wireless LAN Controller Software GUI Privilege Escalation Vulnerability
CVE-2018-0381Cisco Aironet 1560, 1800, 2800, and 3800 Series Access Points Denial of Service Vulnerabil
CVE-2018-0420Cisco Wireless LAN Controller Software Directory Traversal Vulnerability
CVE-2018-0441Cisco IOS Access Points Software 802.11r Fast Transition Denial of Service Vulnerability
CVE-2018-0442Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points
CVE-2018-0443Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points
CVE-2018-15435Cisco SocialMiner Cross-Site Scripting Vulnerability
CVE-2018-15438Cisco Prime Collaboration Assurance Cross-Site Request Forgery Vulnerability

IV. Related Vulnerabilities

Same vendor: Cisco
Same weakness: CWE-20

V. Comments for CVE-2018-0456

No comments yet

Leave a comment