CVE-2018-0331 (CNNVD-201806-1119)
中文标题:
多款Cisco产品NX-OS Software Discovery Protocol子系统资源管理错误漏洞
英文标题:
A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running...
漏洞描述
中文描述:
Cisco Firepower 4100 Series Next-Generation Firewall等都是美国思科(Cisco)公司的产品。Cisco Firepower 4100 Series Next-Generation Firewall是一款4100系列防火墙产品。Multilayer Director Switches是一款网关设备。Firepower Extensible Operating System(FXOS)和NX-OS System Software都是使用在其中的系统。NX-OS Software是一套面向数据中心的操作系统。Discovery Protocol(前称CDP)subsystem是其中的一个Cisco设备发现协议子系统。 多款Cisco产品中的NX-OS Software的Discovery Protocol子系统存在资源管理错误漏洞,该漏洞源于程序没有正确的验证Cisco Discovery Protocol消息中的某些字段。攻击者可通过提交Cisco Discovery Protocol消息利用该漏洞造成拒绝服务。以下产品受到影响:Cisco Firepower 4100 Series Next-Generation Firewall;Firepower 9300 Security Appliance;MDS 9000 Series Multilayer Director Switches;Nexus 1000V Series Switches;Nexus 1100 Series Cloud Services Platforms;Nexus 2000 Series Switches;Nexus 3000 Series Switches;Nexus 3500 Platform Switches;Nexus 3600 Platform Switches;Nexus 5500 Platform Switches;Nexus 5600 Platform Switches;Nexus 6000 Series Switches;Nexus 7000 Series Switches;Nexus 7700 Series Switches;Nexus 9000 Series Switches(在NX-OS模式下);Nexus 9500 R-Series Line Cards and Fabric Modules;UCS 6100 Series Fabric Interconnects;UCS 6200 Series Fabric Interconnects;UCS 6300 Series Fabric Interconnects。
英文描述:
A vulnerability in the Cisco Discovery Protocol (formerly known as CDP) subsystem of devices running, or based on, Cisco NX-OS Software contain a vulnerability that could allow an unauthenticated, adjacent attacker to create a denial of service (DoS) condition. The vulnerability is due to a failure to properly validate certain fields within a Cisco Discovery Protocol message prior to processing it. An attacker with the ability to submit a Cisco Discovery Protocol message designed to trigger the issue could cause a DoS condition on an affected device while the device restarts. This vulnerability affects Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, MDS 9000 Series Multilayer Director Switches, Nexus 1000V Series Switches, Nexus 1100 Series Cloud Services Platforms, Nexus 2000 Series Switches, Nexus 3000 Series Switches, Nexus 3500 Platform Switches, Nexus 3600 Platform Switches, Nexus 5500 Platform Switches, Nexus 5600 Platform Switches, Nexus 6000 Series Switches, Nexus 7000 Series Switches, Nexus 7700 Series Switches, Nexus 9000 Series Switches in NX-OS mode, Nexus 9500 R-Series Line Cards and Fabric Modules, UCS 6100 Series Fabric Interconnects, UCS 6200 Series Fabric Interconnects, UCS 6300 Series Fabric Interconnects. Cisco Bug IDs: CSCvc89242, CSCve40943, CSCve40953, CSCve40965, CSCve40970, CSCve40978, CSCve40992, CSCve41000, CSCve41007.
CWE类型:
标签:
受影响产品
| 厂商 | 产品 | 版本 | 版本范围 | 平台 | CPE |
|---|---|---|---|---|---|
| cisco | nx-os | * | - | - |
cpe:2.3:o:cisco:nx-os:*:*:*:*:*:*:*:*
|
| cisco | nx-os | 6.0 | - | - |
cpe:2.3:o:cisco:nx-os:6.0:*:*:*:*:*:*:*
|
| cisco | nx-os | 7.0 | - | - |
cpe:2.3:o:cisco:nx-os:7.0:*:*:*:*:*:*:*
|
| cisco | nx-os | 7.2 | - | - |
cpe:2.3:o:cisco:nx-os:7.2:*:*:*:*:*:*:*
|
| cisco | nx-os | 8.0 | - | - |
cpe:2.3:o:cisco:nx-os:8.0:*:*:*:*:*:*:*
|
| cisco | firepower_extensible_operating_system | * | - | - |
cpe:2.3:o:cisco:firepower_extensible_operating_system:*:*:*:*:*:*:*:*
|
| cisco | fxos | * | - | - |
cpe:2.3:o:cisco:fxos:*:*:*:*:*:*:*:*
|
解决方案
中文解决方案:
英文解决方案:
临时解决方案:
CVSS评分详情
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
时间信息
利用信息
数据源详情
| 数据源 | 记录ID | 版本 | 提取时间 |
|---|---|---|---|
| CVE | cve_CVE-2018-0331 |
2025-11-11 15:19:35 | 2025-11-11 07:34:57 |
| NVD | nvd_CVE-2018-0331 |
2025-11-11 14:55:55 | 2025-11-11 07:43:33 |
| CNNVD | cnnvd_CNNVD-201806-1119 |
2025-11-11 15:10:02 | 2025-11-11 07:53:46 |
版本与语言
安全公告
变更历史
查看详细变更
- vulnerability_type: 未提取 -> 输入验证错误
- cnnvd_id: 未提取 -> CNNVD-201806-1119
- data_sources: ['cve', 'nvd'] -> ['cnnvd', 'cve', 'nvd']
查看详细变更
- cvss_score: 未提取 -> 6.5
- cvss_vector: NOT_EXTRACTED -> CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- cvss_version: NOT_EXTRACTED -> 3.1
- affected_products_count: 0 -> 7
- data_sources: ['cve'] -> ['cve', 'nvd']