CVE-2018-15392: Cisco Industrial Network Director DHCP Request Processing Denial of Service Vulnerability
First published: Fri Oct 05 2018(Updated: )
A vulnerability in the DHCP service of Cisco Industrial Network Director could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper handling of DHCP lease requests. An attacker could exploit this vulnerability by sending malicious DHCP lease requests to an affected application. A successful exploit could allow the attacker to cause the DHCP service to terminate, resulting in a DoS condition.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Industrial Network Director | <=1.5\(0.3\) |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2018-15392.
What is the severity of CVE-2018-15392?
The severity of CVE-2018-15392 is medium (4.3).
How does the vulnerability in Cisco Industrial Network Director occur?
The vulnerability in Cisco Industrial Network Director occurs due to improper handling of DHCP lease requests.
What is the impact of this vulnerability?
The impact of this vulnerability is a denial of service (DoS) condition.
Is authentication required to exploit this vulnerability?
No, authentication is not required to exploit this vulnerability.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/title
- agent/references
- agent/tags
- agent/event
- agent/description
- agent/first-publish-date
- vendor/cisco
- canonical/cisco industrial network director
- version/cisco industrial network director/1.5\(0.3\)