CVE-2018-0189

A vulnerability in the Forwarding Information Base (FIB) code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, network attacker to cause a denial of service (DoS) condition. The vulnerability is due to a limitation in the way the FIB is internally representing recursive routes. An attacker could exploit this vulnerability by injecting routes into the routing protocol that have a specific recursive pattern. The attacker must be in a position on the network that provides the ability to inject a number of recursive routes with a specific pattern. An exploit could allow the attacker to cause an affected device to reload, creating a DoS condition. Cisco Bug IDs: CSCva91655.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
5.3 MEDIUM
NETWORK
HIGH
LOW
CVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H
ciscoCNA
---
---
CVEADP
---
---
CISA-ADPADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 55%
VendorProductVersion
ciscoios_xe
𝑥
< 15.5\(3\)s5
ciscoios_xe
𝑥
< 15.5\(3\)m5
ciscoios_xe
𝑥
< 15.4\(3\)s7
ciscoios_xe
𝑥
< 15.4\(2\)s1
ciscoios_xe
𝑥
< 15.4\(1\)s1
ciscoios_xe
𝑥
< 15.4\(1\)s0a
ciscoios_xe
𝑥
< 15.2\(5\)e1
ciscoios_xe
𝑥
< 15.2\(4\)e5
ciscoios_xe
𝑥
< 15.2\(2\)e1
ciscoios_xe
𝑥
< 15.2\(1\)e1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.securityfocus.com/bid/103548
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-FIB-dos
http://www.securityfocus.com/bid/103548
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-FIB-dos