CVE-2018-0231

MITRE NVD CVE.ORG Print: PDF PDF

Summary

CVECVE-2018-0231
StatePUBLIC
Assigner[email protected]
Source PriorityCVE Program / NVD first with legacy fallback
Published2018-04-19 20:29:00 UTC
Updated2023-08-15 15:37:00 UTC
DescriptionA vulnerability in the Transport Layer Security (TLS) library of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of the affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a malicious TLS message to an interface enabled for Secure Layer Socket (SSL) services on an affected device. Messages using SSL Version 3 (SSLv3) or SSL Version 2 (SSLv2) cannot be be used to exploit this vulnerability. An exploit could allow the attacker to cause a buffer underflow, triggering a crash on an affected device. This vulnerability affects Cisco ASA Software and Cisco FTD Software that is running on the following Cisco products: Adaptive Security Virtual Appliance (ASAv), Firepower Threat Defense Virtual (FTDv), Firepower 2100 Series Security Appliance. Cisco Bug IDs: CSCve18902, CSCve34335, CSCve38446.

Risk And Classification

Problem Types: CWE-787

NVD Known Affected Configurations (CPE 2.3)

TypeVendorProductVersionUpdateEditionLanguage
Application Cisco Adaptive Security Appliance Software 9.8(1) All All All
Application Cisco Adaptive Security Appliance Software 9.8\(1\) All All All
Application Cisco Adaptive Security Appliance Software 98.1(1.154) All All All
Application Cisco Adaptive Security Appliance Software 98.1\(1.154\) All All All
Operating System Cisco Adaptive Security Appliance Software 9.8\(1\) All All All
Operating System Cisco Adaptive Security Appliance Software 98.1\(1.154\) All All All
Application Cisco Adaptive Security Appliance Software 9.8\(1\) All All All
Application Cisco Adaptive Security Appliance Software 98.1\(1.154\) All All All
Application Cisco Firepower Threat Defense All All All All
Application Cisco Firepower Threat Defense All All All All

References

ReferenceSourceLinkTags
Cisco Adaptive Security Appliance TLS Denial of Service Vulnerability CONFIRM tools.cisco.com Vendor Advisory
Cisco ASA TLS Buffer Underflow Lets Remote Users Cause the Target System to Reload - SecurityTracker SECTRACK www.securitytracker.com Third Party Advisory, VDB Entry
Rockwell Automation Allen-Bradley Stratix 5950 | CISA MISC ics-cert.us-cert.gov Third Party Advisory, US Government Resource
CVE Program record CVE.ORG www.cve.org canonical
NVD vulnerability detail NVD nvd.nist.gov canonical, analysis

Legacy QID Mappings

  • 590341 Rockwell Automation Allen-Bradley Stratix 5950 Multiple Vulnerabilities (ICSA-18-184-01)
© CVE.report 2026 |

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.

CVE, CWE, and OVAL are registred trademarks of The MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. This site includes MITRE data granted under the following license.

CVE.report and Source URL Uptime Status status.cve.report