var-201810-0573
Vulnerability from variot
A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a temporary denial of service (DoS) condition. The vulnerability exists because the affected devices have a limited amount of Direct Memory Access (DMA) memory and the affected software improperly handles resources in low-memory conditions. An attacker could exploit this vulnerability by sending a sustained, high rate of malicious traffic to an affected device to exhaust memory on the device. A successful exploit could allow the attacker to exhaust DMA memory on the affected device, which could cause the device to reload and result in a temporary DoS condition. CiscoASA5506-XwithFirePOWERServices are all different series of security devices from Cisco. Both AdaptiveSecurityAppliance(ASA)Software and FirepowerThreatDefense(FTD)Software are used in the operating system. Cisco ASA 5506-X with FirePOWER Services, etc. The following products are affected: Cisco ASA 5506-X with FirePOWER Services; ASA 5506H-X with FirePOWER Services; ASA 5506W-X with FirePOWER Services; ASA 5508-X with FirePOWER Services; ASA 5516-X with FirePOWER Services
Show details on source website{ "@context": { "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#", affected_products: { "@id": "https://www.variotdbs.pl/ref/affected_products", }, configurations: { "@id": "https://www.variotdbs.pl/ref/configurations", }, credits: { "@id": "https://www.variotdbs.pl/ref/credits", }, cvss: { "@id": "https://www.variotdbs.pl/ref/cvss/", }, description: { "@id": "https://www.variotdbs.pl/ref/description/", }, exploit_availability: { "@id": "https://www.variotdbs.pl/ref/exploit_availability/", }, external_ids: { "@id": "https://www.variotdbs.pl/ref/external_ids/", }, iot: { "@id": "https://www.variotdbs.pl/ref/iot/", }, iot_taxonomy: { "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/", }, patch: { "@id": "https://www.variotdbs.pl/ref/patch/", }, problemtype_data: { "@id": "https://www.variotdbs.pl/ref/problemtype_data/", }, references: { "@id": "https://www.variotdbs.pl/ref/references/", }, sources: { "@id": "https://www.variotdbs.pl/ref/sources/", }, sources_release_date: { "@id": "https://www.variotdbs.pl/ref/sources_release_date/", }, sources_update_date: { "@id": "https://www.variotdbs.pl/ref/sources_update_date/", }, threat_type: { "@id": "https://www.variotdbs.pl/ref/threat_type/", }, title: { "@id": "https://www.variotdbs.pl/ref/title/", }, type: { "@id": "https://www.variotdbs.pl/ref/type/", }, }, "@id": "https://www.variotdbs.pl/vuln/VAR-201810-0573", affected_products: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/affected_products#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { model: "firepower threat defense", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.2.3", }, { model: "adaptive security appliance software", scope: "eq", trust: 1.6, vendor: "cisco", version: "9.8", }, { model: "firepower threat defense", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.0.1", }, { model: "firepower threat defense", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.2.0", }, { model: "adaptive security appliance software", scope: "eq", trust: 1.6, vendor: "cisco", version: "9.9\\(28\\)", }, { model: "firepower threat defense", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.0", }, { model: "adaptive security appliance software", scope: "eq", trust: 1.6, vendor: "cisco", version: "9.9", }, { model: "adaptive security appliance software", scope: "eq", trust: 1.6, vendor: "cisco", version: "9.7", }, { model: "firepower threat defense", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.1.0", }, { model: "firepower threat defense", scope: "eq", trust: 1.6, vendor: "cisco", version: "6.2.2", }, { model: "adaptive security appliance software", scope: "eq", trust: 1, vendor: "cisco", version: "9.4", }, { model: "adaptive security appliance software", scope: "eq", trust: 1, vendor: "cisco", version: "9.6\\(43\\)", }, { model: "adaptive security appliance software", scope: "eq", trust: 1, vendor: "cisco", version: "9.3", }, { model: "adaptive security appliance software", scope: "eq", trust: 1, vendor: "cisco", version: "9.6", }, { model: "adaptive security appliance software", scope: "eq", trust: 1, vendor: "cisco", version: "9.5", }, { model: "adaptive security appliance software", scope: null, trust: 0.8, vendor: "cisco", version: null, }, { model: "firepower threat defense software", scope: null, trust: 0.8, vendor: "cisco", version: null, }, { model: "asa with firepower services", scope: "eq", trust: 0.6, vendor: "cisco", version: "5506-x", }, { model: "asa 5506h-x with firepower services", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "asa 5506w-x with firepower services", scope: null, trust: 0.6, vendor: "cisco", version: null, }, { model: "asa with firepower services", scope: "eq", trust: 0.6, vendor: "cisco", version: "5508-x", }, { model: "asa with firepower services", scope: "eq", trust: 0.6, vendor: "cisco", version: "5516-x", }, ], sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNNVD", id: "CNNVD-201810-181", }, { db: "NVD", id: "CVE-2018-15383", }, ], }, configurations: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/configurations#", children: { "@container": "@list", }, cpe_match: { "@container": "@list", }, data: { "@container": "@list", }, nodes: { "@container": "@list", }, }, data: [ { CVE_data_version: "4.0", nodes: [ { cpe_match: [ { cpe22Uri: "cpe:/a:cisco:adaptive_security_appliance_software", vulnerable: true, }, { cpe22Uri: "cpe:/a:cisco:firepower_threat_defense_software", vulnerable: true, }, ], operator: "OR", }, ], }, ], sources: [ { db: "JVNDB", id: "JVNDB-2018-013333", }, ], }, cve: "CVE-2018-15383", cvss: { "@context": { cvssV2: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2", }, cvssV3: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#", }, "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/", }, severity: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/cvss/severity#", }, "@id": "https://www.variotdbs.pl/ref/cvss/severity", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, "@id": "https://www.variotdbs.pl/ref/sources", }, }, data: [ { cvssV2: [ { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "nvd@nist.gov", availabilityImpact: "COMPLETE", baseScore: 7.8, confidentialityImpact: "NONE", exploitabilityScore: 10, id: "CVE-2018-15383", impactScore: 6.9, integrityImpact: "NONE", severity: "HIGH", trust: 1.8, vectorString: "AV:N/AC:L/Au:N/C:N/I:N/A:C", version: "2.0", }, { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "CNVD", availabilityImpact: "COMPLETE", baseScore: 10, confidentialityImpact: "COMPLETE", exploitabilityScore: 10, id: "CNVD-2018-21927", impactScore: 10, integrityImpact: "COMPLETE", severity: "HIGH", trust: 0.6, vectorString: "AV:N/AC:L/Au:N/C:C/I:C/A:C", version: "2.0", }, { accessComplexity: "LOW", accessVector: "NETWORK", authentication: "NONE", author: "VULHUB", availabilityImpact: "COMPLETE", baseScore: 7.8, confidentialityImpact: "NONE", exploitabilityScore: 10, id: "VHN-125637", impactScore: 6.9, integrityImpact: "NONE", severity: "HIGH", trust: 0.1, vectorString: "AV:N/AC:L/AU:N/C:N/I:N/A:C", version: "2.0", }, ], cvssV3: [ { attackComplexity: "LOW", attackVector: "NETWORK", author: "nvd@nist.gov", availabilityImpact: "HIGH", baseScore: 7.5, baseSeverity: "HIGH", confidentialityImpact: "NONE", exploitabilityScore: 3.9, id: "CVE-2018-15383", impactScore: 3.6, integrityImpact: "NONE", privilegesRequired: "NONE", scope: "UNCHANGED", trust: 1, userInteraction: "NONE", vectorString: "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.1", }, { attackComplexity: "Low", attackVector: "Network", author: "NVD", availabilityImpact: "High", baseScore: 7.5, baseSeverity: "High", confidentialityImpact: "None", exploitabilityScore: null, id: "CVE-2018-15383", impactScore: null, integrityImpact: "None", privilegesRequired: "None", scope: "Unchanged", trust: 0.8, userInteraction: "None", vectorString: "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", version: "3.0", }, ], severity: [ { author: "nvd@nist.gov", id: "CVE-2018-15383", trust: 1, value: "HIGH", }, { author: "NVD", id: "CVE-2018-15383", trust: 0.8, value: "High", }, { author: "CNVD", id: "CNVD-2018-21927", trust: 0.6, value: "HIGH", }, { author: "CNNVD", id: "CNNVD-201810-181", trust: 0.6, value: "HIGH", }, { author: "VULHUB", id: "VHN-125637", trust: 0.1, value: "HIGH", }, ], }, ], sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "VULHUB", id: "VHN-125637", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNNVD", id: "CNNVD-201810-181", }, { db: "NVD", id: "CVE-2018-15383", }, ], }, description: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/description#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "A vulnerability in the cryptographic hardware accelerator driver of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a temporary denial of service (DoS) condition. The vulnerability exists because the affected devices have a limited amount of Direct Memory Access (DMA) memory and the affected software improperly handles resources in low-memory conditions. An attacker could exploit this vulnerability by sending a sustained, high rate of malicious traffic to an affected device to exhaust memory on the device. A successful exploit could allow the attacker to exhaust DMA memory on the affected device, which could cause the device to reload and result in a temporary DoS condition. CiscoASA5506-XwithFirePOWERServices are all different series of security devices from Cisco. Both AdaptiveSecurityAppliance(ASA)Software and FirepowerThreatDefense(FTD)Software are used in the operating system. Cisco ASA 5506-X with FirePOWER Services, etc. The following products are affected: Cisco ASA 5506-X with FirePOWER Services; ASA 5506H-X with FirePOWER Services; ASA 5506W-X with FirePOWER Services; ASA 5508-X with FirePOWER Services; ASA 5516-X with FirePOWER Services", sources: [ { db: "NVD", id: "CVE-2018-15383", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNVD", id: "CNVD-2018-21927", }, { db: "VULHUB", id: "VHN-125637", }, ], trust: 2.25, }, external_ids: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/external_ids#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { db: "NVD", id: "CVE-2018-15383", trust: 3.1, }, { db: "SECTRACK", id: "1041787", trust: 2.3, }, { db: "JVNDB", id: "JVNDB-2018-013333", trust: 0.8, }, { db: "CNNVD", id: "CNNVD-201810-181", trust: 0.7, }, { db: "CNVD", id: "CNVD-2018-21927", trust: 0.6, }, { db: "VULHUB", id: "VHN-125637", trust: 0.1, }, ], sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "VULHUB", id: "VHN-125637", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNNVD", id: "CNNVD-201810-181", }, { db: "NVD", id: "CVE-2018-15383", }, ], }, id: "VAR-201810-0573", iot: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: true, sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "VULHUB", id: "VHN-125637", }, ], trust: 1.4738095333333332, }, iot_taxonomy: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { category: [ "Network device", ], sub_category: null, trust: 0.6, }, ], sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, ], }, last_update_date: "2024-11-23T21:52:47.017000Z", patch: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/patch#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { title: "cisco-sa-20181003-asa-dma-dos", trust: 0.8, url: "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181003-asa-dma-dos", }, { title: "Patch for CiscoAdaptiveSecurityApplianceSoftware and FirepowerThreatDefenseSoftware Denial of Service Vulnerabilities", trust: 0.6, url: "https://www.cnvd.org.cn/patchInfo/show/143377", }, { title: "Cisco Adaptive Security Appliance Software and Cisco Firepower Threat Defense Software Security vulnerabilities", trust: 0.6, url: "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=85395", }, ], sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNNVD", id: "CNNVD-201810-181", }, ], }, problemtype_data: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { problemtype: "CWE-400", trust: 1.9, }, { problemtype: "CWE-770", trust: 1.1, }, ], sources: [ { db: "VULHUB", id: "VHN-125637", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "NVD", id: "CVE-2018-15383", }, ], }, references: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/references#", data: { "@container": "@list", }, sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: [ { trust: 2.3, url: "http://www.securitytracker.com/id/1041787", }, { trust: 1.7, url: "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20181003-asa-dma-dos", }, { trust: 0.8, url: "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2018-15383", }, { trust: 0.8, url: "https://nvd.nist.gov/vuln/detail/cve-2018-15383", }, ], sources: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "VULHUB", id: "VHN-125637", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNNVD", id: "CNNVD-201810-181", }, { db: "NVD", id: "CVE-2018-15383", }, ], }, sources: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", data: { "@container": "@list", }, }, data: [ { db: "CNVD", id: "CNVD-2018-21927", }, { db: "VULHUB", id: "VHN-125637", }, { db: "JVNDB", id: "JVNDB-2018-013333", }, { db: "CNNVD", id: "CNNVD-201810-181", }, { db: "NVD", id: "CVE-2018-15383", }, ], }, sources_release_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#", data: { "@container": "@list", }, }, data: [ { date: "2018-10-28T00:00:00", db: "CNVD", id: "CNVD-2018-21927", }, { date: "2018-10-05T00:00:00", db: "VULHUB", id: "VHN-125637", }, { date: "2019-02-19T00:00:00", db: "JVNDB", id: "JVNDB-2018-013333", }, { date: "2018-10-08T00:00:00", db: "CNNVD", id: "CNNVD-201810-181", }, { date: "2018-10-05T14:29:07.230000", db: "NVD", id: "CVE-2018-15383", }, ], }, sources_update_date: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#", data: { "@container": "@list", }, }, data: [ { date: "2018-10-28T00:00:00", db: "CNVD", id: "CNVD-2018-21927", }, { date: "2020-08-31T00:00:00", db: "VULHUB", id: "VHN-125637", }, { date: "2019-02-19T00:00:00", db: "JVNDB", id: "JVNDB-2018-013333", }, { date: "2020-10-22T00:00:00", db: "CNNVD", id: "CNNVD-201810-181", }, { date: "2024-11-21T03:50:40.370000", db: "NVD", id: "CVE-2018-15383", }, ], }, threat_type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/threat_type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "remote", sources: [ { db: "CNNVD", id: "CNNVD-201810-181", }, ], trust: 0.6, }, title: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/title#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "Cisco Adaptive Security Appliance and Firepower Threat Defense Software depletion vulnerability", sources: [ { db: "JVNDB", id: "JVNDB-2018-013333", }, ], trust: 0.8, }, type: { "@context": { "@vocab": "https://www.variotdbs.pl/ref/type#", sources: { "@container": "@list", "@context": { "@vocab": "https://www.variotdbs.pl/ref/sources#", }, }, }, data: "resource management error", sources: [ { db: "CNNVD", id: "CNNVD-201810-181", }, ], trust: 0.6, }, }
Log in or create an account to share your comment.
This schema specifies the format of a comment related to a security advisory.
Sightings
Author | Source | Type | Date |
---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.