CVE-2018-0299

A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco NX-OS on the Cisco Nexus 4000 Series Switch could allow an authenticated, remote attacker to cause the device to unexpectedly reload, resulting in a denial of service (DoS) condition. The vulnerability is due to incomplete validation of an SNMP poll request for a specific MIB. An attacker could exploit this vulnerability by sending a specific SNMP poll request to the targeted device. An exploit could allow the attacker to cause the device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvg10442.

Published : 2018-06-21 11:29 Updated : 2019-10-09 23:31

6.8
CVSS Score More info
Score 6.8 / 10
6.8
Vendor Product Version URI
Cisco Nx-os 4.1%282%29e1%281r%29 cpe:/o:cisco:nx-os:4.1%282%29e1%281r%29
  1. Cisco (1) Search CVE
    1. Nx-os (1) Search CVE
      1. 4.1%282%29e1%281r%29

CWE

ID Name Description Links
CWE-20 Improper Input Validation The product does not validate or incorrectly validates input that can affect the control flow or data flow of a program. CVE

History of changes

Date Event
2018-08-20 19:43
2018-06-24 01:29
2018-06-21 11:29

New CVE