Support Us — Your donation helps us keep running

Goal: 1000 CNY,Raised: 1000 CNY

100.0%
Donate Now
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-0281
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the detection engine of Cisco Firepower System Software could allow an unauthenticated, remote attacker to restart an instance of the Snort detection engine on an affected device, resulting in a brief denial of service (DoS) condition. The vulnerability is due to the incorrect handling of a Transport Layer Security (TLS) extension during TLS connection setup for the affected software. An attacker could exploit this vulnerability by sending a crafted TLS connection setup request to an affected device. A successful exploit could allow the attacker to cause the Snort detection engine on the affected device to restart, resulting in a DoS condition. Cisco Bug IDs: CSCvg97808.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
加密问题
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco Firepower System Software 加密问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco Firepower System Software是美国思科(Cisco)公司的一款下一代防火墙产品(NGFW)。 Cisco Firepower System Software中存在加密问题漏洞,该漏洞源于在对受影响软件建立TLS连接时程序没有正确的处理传输层安全协议(TLS)扩展。远程攻击者可通过向受影响的设备发送特制的创建TLS连接的请求利用该漏洞造成拒绝服务(Snort检测引擎实例重启)。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
VendorProductAffected VersionsCPESubscribe
-Cisco Firepower System Software Cisco Firepower System Software -
II. Public POCs for CVE-2018-0281
#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC
III. Intelligence Information for CVE-2018-0281
Please Login to view more intelligence information
New Vulnerabilities
Product: Cisco Firepower System Software
Vendor: n/a
Same weakness: CWE-310
V. Comments for CVE-2018-0281

No comments yet

Leave a comment