CVE-2018-0297

{"id": "CVE-2018-0297", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:P/A:N", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "NONE"}, "acInsufInfo": false, "impactScore": 2.9, "baseSeverity": "MEDIUM", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "CHANGED", "version": "3.0", "baseScore": 5.8, "attackVector": "NETWORK", "baseSeverity": "MEDIUM", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N", "integrityImpact": "LOW", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "NONE", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 1.4, "exploitabilityScore": 3.9}]}, "published": "2018-05-17T03:29:00.667", "references": [{"url": "http://www.securityfocus.com/bid/104197", "tags": ["Third Party Advisory", "VDB Entry"], "source": "ykramarz@cisco.com"}, {"url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180516-firepwr-pb", "tags": ["Vendor Advisory"], "source": "ykramarz@cisco.com"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-693"}]}, {"type": "Secondary", "source": "ykramarz@cisco.com", "description": [{"lang": "en", "value": "CWE-693"}]}], "descriptions": [{"lang": "en", "value": "A vulnerability in the detection engine of Cisco Firepower Threat Defense software could allow an unauthenticated, remote attacker to bypass a configured Secure Sockets Layer (SSL) Access Control (AC) policy to block SSL traffic. The vulnerability is due to the incorrect handling of TCP SSL packets received out of order. An attacker could exploit this vulnerability by sending a crafted SSL connection through the affected device. A successful exploit could allow the attacker to bypass a configured SSL AC policy to block SSL traffic. Cisco Bug IDs: CSCvg09316."}, {"lang": "es", "value": "Una vulnerabilidad en el motor de detecci\u00f3n del software Cisco Firepower Threat Defense podr\u00eda permitir que un atacante remoto no autenticado omita una pol\u00edtica de control de acceso (AC) Secure Sockets Layer (SSL) para bloquear el tr\u00e1fico SSL. Esta vulnerabilidad se debe a la gesti\u00f3n incorrecta de ciertos paquetes TCP SSL recibidos fuera de orden. Un atacante podr\u00eda explotar esta vulnerabilidad enviando una conexi\u00f3n SSL manipulada a trav\u00e9s de un dispositivo afectado. Su explotaci\u00f3n con \u00e9xito podr\u00eda permitir que el atacante omita una pol\u00edtica AC SSL para bloquear el tr\u00e1fico SSL. Cisco Bug IDs: CSCvg09316."}], "lastModified": "2019-10-09T23:31:41.020", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.0.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E1AC6A67-82EF-4D31-AFCB-499A0C6EC0F8"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.1.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "61FB47CF-2A6A-4121-BFF7-5862E163B8E5"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.2.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "1DC52A8B-7DF4-47B2-9F49-627F59656E5E"}, {"criteria": "cpe:2.3:a:cisco:firepower_threat_defense:6.2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "42496A5B-1644-4088-BBCF-2ED810A5694B"}], "operator": "OR"}]}], "sourceIdentifier": "ykramarz@cisco.com"}