CVE-2018-0165

{"id": "CVE-2018-0165", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 6.1, "accessVector": "ADJACENT_NETWORK", "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 6.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 6.5, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 7.4, "attackVector": "ADJACENT_NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 4.0, "exploitabilityScore": 2.8}]}, "published": "2018-03-28T22:29:00.860", "references": [{"url": "http://www.securityfocus.com/bid/103568", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "http://www.securitytracker.com/id/1040592", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-igmp", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-772"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-399"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the Internet Group Management Protocol (IGMP) packet-processing functionality of Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to exhaust buffers on an affected device, resulting in a denial of service (DoS) condition, aka a Memory Leak. The vulnerability is due to the affected software insufficiently processing IGMP Membership Query packets that are sent to an affected device. An attacker could exploit this vulnerability by sending a large number of IGMP Membership Query packets, which contain certain values, to an affected device. A successful exploit could allow the attacker to exhaust buffers on the affected device, resulting in a DoS condition that requires the device to be reloaded manually. This vulnerability affects: Cisco Catalyst 4500 Switches with Supervisor Engine 8-E, if they are running Cisco IOS XE Software Release 3.x.x.E and IP multicast routing is configured; Cisco devices that are running Cisco IOS XE Software Release 16.x, if IP multicast routing is configured. Cisco Bug IDs: CSCuw09295, CSCve94496."}, {"lang": "es", "value": "Una vulnerabilidad en la funcionalidad de procesamiento de paquetes IGMP (Internet Group Management Protocol) de Cisco IOS XE Software podr\u00eda permitir que un atacante adyacente sin autenticar agote los b\u00fafers en un dispositivo afectado. Esto resulta en una condici\u00f3n de denegaci\u00f3n de servicio (DoS), tambi\u00e9n conocida como fuga de memoria. La vulnerabilidad se debe a que el software afectado no procesa lo suficiente los paquetes IGMP Membership Query que se env\u00edan al dispositivo afectado. Un atacante podr\u00eda explotar esta vulnerabilidad mediante el env\u00edo de un gran n\u00famero de paquetes IGMP Membership Query, que contienen ciertos valores, a un dispositivo afectado. Su explotaci\u00f3n con \u00e9xito podr\u00eda permitir que el atacante agote los b\u00fafers del dispositivo afectado, lo que resulta en una condici\u00f3n de denegaci\u00f3n de servicio (DoS) que requiere la recarga manual del dispositivo. Esta vulnerabilidad afecta a: Switches Cisco Catalyst 4500 con Supervisor Engine 8-E, si est\u00e1n ejecutando Cisco IOS XE Software Release 3.x.x.E y est\u00e1n configurados con IP multicast routing y los dispositivos Cisco que ejecutan Cisco IOS XE Software Release 16.x, si est\u00e1n configurados con IP multicast routing. Cisco Bug IDs: CSCuw09295, CSCve94496."}], "lastModified": "2019-10-09T23:31:22.067", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xe:15.2\\(3\\)e:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "FAD6B31A-B37F-42E4-B3B0-FE919DC5ECA4"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:catalyst_4000:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8320F2D5-4847-460C-A8A7-3E7E22C5E0C7"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:cisco:ios_xe:denali-16.3.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "EF7E2D2F-747F-409B-9964-2E4BA96158EB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:cisco:catalyst_3850-12s-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5C2A8413-DF92-4690-8BC1-A21001BDF76B"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-12s-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "882B8D8F-E154-45C3-BB47-5353167C9776"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-12xs-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "A54B4EB4-EB41-4522-B7AB-C30F96099EA3"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-12xs-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EAD7BE51-0BA6-4750-B274-A6E33D32B484"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-16xs-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D5B6123E-B86F-4EC8-95D6-4CE47A7D0AC2"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-16xs-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C2305B8A-B8F2-4AF4-A86A-EFF11541D62D"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24p-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "44C3EF8E-DF88-46DC-8E06-B009F346D1D2"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24p-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7E87F823-D924-4718-AD81-248A6C619531"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24p-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0BA01B5E-9E7B-4EE6-9480-A82B753BBB82"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24pw-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "CCAC93E0-F982-4E37-866E-43B7BC5AC82E"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24s-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1FC866C9-BB98-4320-9FFA-F0960C560DA6"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24s-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "79FB0F3E-BB66-47BB-A59F-2D4C123F9CBE"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24t-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C3AD7495-3DA2-4596-9620-CD36D7C561AC"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24t-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E492F3F8-4188-41E4-9A84-5E30C4AC3378"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24t-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "718F2FDC-9EA4-4C4C-8821-B15E56AF8101"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24u-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BC04072A-9BBE-4A9D-AE39-054D93E0C6D8"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24u-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E45BCCD0-65BB-431F-B448-221C1595CD92"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24u-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F33BA722-0680-4074-8D03-41657F8CDCC7"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24xs-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "431570C7-74A1-4F7E-8FD0-690AEF0F823B"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24xs-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C5D22E15-E1E8-4115-A55F-5743CA9C5947"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24xu-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7B240B20-CF48-4A72-9653-9D04D59C1391"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24xu-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "19D6AC73-67C9-4FA2-A361-FF08B0E3AF47"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-24xu-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "58430463-EA77-4DC9-ACDE-4DCF92CA2FC7"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-32xs-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "74CCD143-3D6E-4880-B275-ECF5B04238C6"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-32xs-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F0D3784F-C572-4A6F-83B9-BCF64D339BC9"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48f-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "E09C466B-CE87-4A57-B40B-88C94BAAF36B"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48f-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "D58FF034-8E07-4518-A858-5F16F22217E5"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48f-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "376AD386-373D-4B24-966F-D11F76C9020F"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48p-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2280CAA3-03F6-4168-8E50-A6B7132A3B0E"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48p-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2E0C1174-C789-4547-9899-F7FCD0905F92"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48p-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "EC366801-655A-403B-ACD9-3BB43802A3C5"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48pw-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FF5463D0-A8D3-43EC-8CFF-F659A8C84436"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48t-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1BD50BB2-BFD8-42F2-8C23-0D95187B01F2"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48t-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "05D4D7E4-B195-46D8-8A6B-6AA4B8357618"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48t-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "39600E51-4A21-4E5B-9FF9-E7C00AE86646"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48u-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B13D6D50-D0FA-4527-BED3-52560DDD5253"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48u-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "965BF315-D833-4711-97FC-512151113367"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48u-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "2A0ADEBE-3DA2-4850-8115-0AC937FB0A94"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48xs-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "04072C0F-78A2-4D10-87B2-52DC2537BA89"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48xs-f-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "DD5C080E-D5C4-47B2-A46C-4EB3051C5221"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48xs-f-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "41CEBEE0-DA67-4EE5-9BCF-263843053A8F"}, {"criteria": "cpe:2.3:h:cisco:catalyst_3850-48xs-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "FD262F58-C47F-439E-A9FF-D1C60120D306"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c3850-12x48u-e:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8B9D6819-2CFC-428A-8C51-F0D4C55D5B29"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c3850-12x48u-l:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B3ECDFFB-DAD1-4BF6-85E1-1E8F94F991EA"}, {"criteria": "cpe:2.3:h:cisco:catalyst_c3850-12x48u-s:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "F80AC0C7-6E96-4A72-B330-33BAF004B4C6"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "ykramarz@cisco.com"}