Denial of service in Cisco Nexus 3000 and 9000 Series switches
| Risk | Medium |
| Patch available | YES |
| Number of vulnerabilities | 1 |
| CVE-ID | CVE-2018-0309 |
| CWE-ID | CWE-400 |
| Exploitation vector | Network |
| Public exploit | N/A |
| Vulnerable software |
Cisco Nexus 9000 Series Switches Hardware solutions / Routers & switches, VoIP, GSM, etc Cisco Nexus 3000 Series Switches Hardware solutions / Routers & switches, VoIP, GSM, etc |
| Vendor | Cisco Systems, Inc |
Security Bulletin
This security bulletin contains one medium risk vulnerability.
1) Resource exhaustion
EUVDB-ID: #VU13415
Risk: Medium
CVSSv4.0: 4.9 [CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green]
CVE-ID: CVE-2018-0309
CWE-ID:
CWE-400 - Resource exhaustion
Exploit availability: No
DescriptionThe vulnerability allows a remote authenticated attacker to cause DoS condition on the target system.
The vulnerability exists in the associated Simple Network Management Protocol (SNMP) MIB for Cisco Nexus 3000 and 9000 Series Switches due to the incorrect implementation of the CLI command, resulting in a failure to free all allocated memory upon completion. A remote attacker can authenticate to the affected device and repeatedly issue a specific CLI command or send a specific SNMP poll request for a specific Object Identifier (OID) and cause the IP routing process to restart or to cause a device to reset.
MitigationThe vulnerability is fixed in the versions 7.0(3)I4(8), 7.0(3)I7(1), 7.0(3)I6(2).
Cisco Nexus 9000 Series Switches: 7.0.3 I5.2 - 7.0.3 I6.1
Cisco Nexus 3000 Series Switches: 7.0.3 I5.2 - 7.0.3 I6.1
CPE2.3- cpe:2.3:h:cisco_systems:cisco_nexus_9000_series_switches:7.0.3 I5.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_nexus_9000_series_switches:7.0.3 I6.1:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_nexus_3000_series_switches:7.0.3 I5.2:*:*:*:*:*:*:*
- cpe:2.3:h:cisco_systems:cisco_nexus_3000_series_switches:7.0.3 I6.1:*:*:*:*:*:*:*
Q & A
Can this vulnerability be exploited remotely?
Yes. This vulnerability can be exploited by a remote authenticated user via the Internet.
How the attacker can exploit this vulnerability?
The attacker would have to send a specially crafted request to the affected device in order to exploit this vulnerability.
Is there known malware, which exploits this vulnerability?
No. We are not aware of malware exploiting this vulnerability.
