CVE-2018-0383
First published: Mon Jul 16 2018(Updated: )
A vulnerability in the detection engine of Cisco FireSIGHT System Software could allow an unauthenticated, remote attacker to bypass a file policy that is configured to block the transfer of files to an affected system via FTP. The vulnerability exists because the affected software incorrectly handles FTP control connections. An attacker could exploit this vulnerability by sending a maliciously crafted FTP connection to transfer a file to an affected device. A successful exploit could allow the attacker to bypass a file policy that is configured to apply the Block upload with reset action to FTP traffic. Cisco Bug IDs: CSCvh70130.
Credit: ykramarz@cisco.com ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Secure Firewall Management Center | =6.2.2.1 | |
| Cisco Secure Firewall Management Center | =6.2.3 | |
| Cisco Secure Firewall Management Center | =6.3.0 | |
| Cisco Firepower Management Center Software | =6.2.2.1 | |
| Cisco Firepower Management Center Software | =6.2.3 | |
| Cisco Firepower Management Center Software | =6.3.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2018-0383?
CVE-2018-0383 is rated as a high-severity vulnerability due to its potential to allow unauthorized file transfers via FTP.
How do I fix CVE-2018-0383?
To fix CVE-2018-0383, you should upgrade to a patched version of Cisco Secure Firewall Management Center or Cisco Firepower Management Center Software.
Which Cisco products are affected by CVE-2018-0383?
CVE-2018-0383 affects Cisco Secure Firewall Management Center and Cisco Firepower Management Center Software versions 6.2.2.1, 6.2.3, and 6.3.0.
Can CVE-2018-0383 be exploited remotely?
Yes, CVE-2018-0383 can be exploited by unauthenticated remote attackers.
What type of attack does CVE-2018-0383 facilitate?
CVE-2018-0383 facilitates the bypassing of file transfer policies, which could lead to unauthorized file uploads.
- agent/type
- agent/severity
- agent/references
- agent/weakness
- agent/first-publish-date
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/author
- agent/event
- agent/softwarecombine
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco secure firewall management center
- version/cisco secure firewall management center/6.2.2.1
- version/cisco secure firewall management center/6.2.3
- version/cisco secure firewall management center/6.3.0
- canonical/cisco firepower management center software
- version/cisco firepower management center software/6.2.2.1
- version/cisco firepower management center software/6.2.3
- version/cisco firepower management center software/6.3.0