CVE-2018-15437— Cisco Immunet and Cisco AMP for Endpoints System Scan Denial of Service Vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-15437
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Immunet and Cisco AMP for Endpoints System Scan Denial of Service Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the system scanning component of Cisco Immunet and Cisco Advanced Malware Protection (AMP) for Endpoints running on Microsoft Windows could allow a local attacker to disable the scanning functionality of the product. This could allow executable files to be launched on the system without being analyzed for threats. The vulnerability is due to improper process resource handling. An attacker could exploit this vulnerability by gaining local access to a system running Microsoft Windows and protected by Cisco Immunet or Cisco AMP for Endpoints and executing a malicious file. A successful exploit could allow the attacker to prevent the scanning services from functioning properly and ultimately prevent the system from being protected from further intrusion.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Immunet和Cisco AMP for Endpoints 资源管理错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Immunet和AMP for Endpoints都是美国思科(Cisco)公司的产品。Cisco Immunet是一套恶意软件防护程序。AMP for Endpoints是一套集成了静态和动态恶意软件分析以及威胁情报于一体的终端应用程序。 基于Microsoft Windows平台的Cisco Immunet和AMP for Endpoints中的系统扫描组件存在拒绝服务漏洞。本地攻击者可利用该漏洞禁用产品的扫描功能。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco AMP for Endpoints | n/a | - |
II. Public POCs for CVE-2018-15437
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-15437
请登录查看更多情报信息。
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181107-imm-dosvendor-advisoryx_refsource_CISCO
- https://nvd.nist.gov/vuln/detail/CVE-2018-15437
Same Patch Batch · Cisco · 2018-11-08 · 15 CVEs total
| CVE-2018-15450 | Cisco Prime Collaboration Assurance File Overwrite Vulnerability | |
| CVE-2018-15451 | Cisco Prime Service Catalog Cross-Site Scripting Vulnerability | |
| CVE-2018-15447 | Cisco Integrated Management Controller Supervisor SQL Injection Vulnerability | |
| CVE-2018-15448 | Cisco Registered Envelope Service Information Disclosure Vulnerability | |
| CVE-2018-15449 | Cisco Video Surveillance Media Server Denial of Service Vulnerability | |
| CVE-2018-15444 | Cisco Energy Management Suite XML External Entity Vulnerability | |
| CVE-2018-15445 | Cisco Energy Management Suite Cross-Site Request Forgery Vulnerability | |
| CVE-2018-15446 | Cisco Meeting Server Information Disclosure Vulnerability | |
| CVE-2018-15381 | Cisco Unity Express Arbitrary Command Execution Vulnerability | |
| CVE-2018-15393 | Cisco Content Security Management Appliance (SMA) Cross-Site Scripting Vulnerability | |
| CVE-2018-15394 | Cisco Stealthwatch Management Console Authentication Bypass Vulnerability | |
| CVE-2018-15439 | Cisco Small Business Switches Privileged Access Vulnerability | |
| CVE-2018-15443 | Cisco Firepower Detection Engine TCP Intrusion Prevention System Rule Bypass Vulnerability | |
| CVE-2018-0284 | Cisco Meraki Local Status Page Privilege Escalation Vulnerability |
IV. Related Vulnerabilities
Same product: Cisco AMP for Endpoints
- CVE-2022-20796
ClamAV Truncated File Denial of Service Vulnerability Affect - CVE-2022-20785
ClamAV HTML Scanning Memory Leak Vulnerability Affecting Cis - CVE-2022-20771
ClamAV TIFF File Parsing Denial of Service Vulnerability Aff - CVE-2022-20770
ClamAV CHM File Parsing Denial of Service Vulnerability Affe - CVE-2021-1386
Cisco Advanced Malware Protection for Endpoints Windows Conn
Same vendor: Cisco
- CVE-2026-20219
Cisco Slido 安全漏洞 - CVE-2026-20034
Cisco Unity Connection Remote Code Execution Vulnerability - CVE-2026-20035
Cisco Unity Connection Server-Side Request Forgery Vulnerabi - CVE-2026-20167
Cisco IoT Field Network Director Remote Device Denial of Ser - CVE-2026-20169
Cisco IoT Field Network Director Command Injection Vulnerabi
Same weakness: CWE-400
- CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-42343
FastGPT: Uncontrolled Resource Consumption leading to Sandbo - CVE-2026-42212
SolidCAM-GPPL-IDE: XML External Entity (XXE) and billion-lau - CVE-2026-32686
Unbounded exponent in decimal enables unauthenticated DoS - CVE-2026-20188
Cisco Crosswork Network Controller and Cisco Network Service
V. Comments for CVE-2018-15437
No comments yet