CVE-2018-0395: Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerability
First published: Wed Oct 17 2018(Updated: )
A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when the device unexpectedly reloads. The vulnerability is due to improper input validation of certain type, length, value (TLV) fields of the LLDP frame header. An attacker could exploit this vulnerability by sending a crafted LLDP packet to an interface on the targeted device. A successful exploit could allow the attacker to cause the switch to reload unexpectedly.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Nx-os | =6.0\(4\) | |
| Cisco Nx-os | =6.1\(3\)s2 | |
| Cisco Nexus 7000 10-slot | ||
| Cisco Nexus 7000 18-slot | ||
| Cisco Nexus 7000 4-slot | ||
| Cisco Nexus 7000 9-slot | ||
| Cisco Nexus 7700 10-slot | ||
| Cisco Nexus 7700 18-slot | ||
| Cisco Nexus 7700 2-slot | ||
| Cisco Nexus 7700 6-slot | ||
| Cisco Firepower Extensible Operating System | =r231 | |
| Cisco Nx-os | =r231 | |
| Cisco Firepower 9300 | ||
| Cisco Nx-os | =12.3\(1e\) | |
| Cisco Nx-os | =3.2\(3d\)c | |
| Cisco Ucs |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2018-0395?
CVE-2018-0395 is a vulnerability in the Link Layer Discovery Protocol (LLDP) implementation for Cisco FXOS Software and Cisco NX-OS Software.
How does CVE-2018-0395 impact Cisco devices?
CVE-2018-0395 could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when the device unexpectedly reloads.
What is the severity of CVE-2018-0395?
CVE-2018-0395 has a severity score of 5.3 out of 10, which is considered high.
Which software versions are affected by CVE-2018-0395?
CVE-2018-0395 affects Cisco NX-OS versions 6.0(4) and 6.1(3)s2.
How can I fix CVE-2018-0395?
To fix CVE-2018-0395, Cisco has released software updates. Please refer to the Cisco Security Advisory for more information.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/author
- agent/last-modified-date
- agent/references
- agent/weakness
- agent/title
- agent/first-publish-date
- agent/description
- agent/event
- agent/tags
- vendor/cisco
- canonical/cisco nx-os
- version/cisco nx-os/6.0\(4\)
- version/cisco nx-os/6.1\(3\)s2
- canonical/cisco nexus 7000 10-slot
- canonical/cisco nexus 7000 18-slot
- canonical/cisco nexus 7000 4-slot
- canonical/cisco nexus 7000 9-slot
- canonical/cisco nexus 7700 10-slot
- canonical/cisco nexus 7700 18-slot
- canonical/cisco nexus 7700 2-slot
- canonical/cisco nexus 7700 6-slot
- canonical/cisco firepower extensible operating system
- version/cisco firepower extensible operating system/r231
- version/cisco nx-os/r231
- canonical/cisco firepower 9300
- version/cisco nx-os/12.3\(1e\)
- version/cisco nx-os/3.2\(3d\)c
- canonical/cisco ucs