CVE-2018-0395 HIGH

CVE-2018-0395: Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability

Vendor Cisco

Product Cisco NX-OS Software

Weakness CWE-20 · Input validation

Published October 17, 2018

Last update November 26, 2024

View on NVD All CVEs

CVSS base score

8.8/10

Attack vector Adjacent

Attack complexity Low

Privileges required None

User interaction None

Confidentiality High

Integrity High

CVSS vector

CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

What the vulnerability does

01Description

A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when the device unexpectedly reloads. The vulnerability is due to improper input validation of certain type, length, value (TLV) fields of the LLDP frame header. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface on the targeted device. A successful exploit could allow the attacker to cause the switch to reload unexpectedly.

Key dates

02Disclosure timeline

October 17, 2018 CVE published

November 26, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-0395

Related vulnerabilities

Identifiers

CVE CVE-2018-0395

CWE CWE-20

CVSS 8.8 / HIGH

Affected versions

Vendor Cisco

Product Cisco NX-OS Software

Affected ≥ unspecified and < 6.2(1)

Vendor Cisco

Product Firepower 4100 Series Next-Generation Firewalls

Affected ≥ unspecified and < <2.3.1.58

CVE-2018-0395: Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability

01Description

02Disclosure timeline

03References

04Related CVE