CVE-2018-0240
Summary
| CVE | CVE-2018-0240 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2018-04-19 20:29:00 UTC |
| Updated | 2023-08-15 15:24:00 UTC |
| Description | Multiple vulnerabilities in the Application Layer Protocol Inspection feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerabilities are due to logical errors during traffic inspection. An attacker could exploit these vulnerabilities by sending a high volume of malicious traffic across an affected device. An exploit could allow the attacker to cause a deadlock condition, resulting in a reload of an affected device. These vulnerabilities affect Cisco ASA Software and Cisco FTD Software configured for Application Layer Protocol Inspection running on the following Cisco products: 3000 Series Industrial Security Appliance (ISA), ASA 5500 Series Adaptive Security Appliances, ASA 5500-X Series Next-Generation Firewalls, ASA Services Module for Cisco Catalyst 6500 Series Switches and Cisco 7600 Series Routers, Adaptive Security Virtual Appliance (ASAv), Firepower 2100 Series Security Appliance, Firepower 4100 Series Security Appliance, Firepower 9300 ASA Security Module, FTD Virtual (FTDv). Cisco Bug IDs: CSCve61540, CSCvh23085, CSCvh95456. |
Risk And Classification
Problem Types: NVD-CWE-noinfo
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Cisco | 7604 | - | All | All | All |
| Hardware | Cisco | 7604 | - | All | All | All |
| Hardware | Cisco | 7606-s | - | All | All | All |
| Hardware | Cisco | 7606-s | - | All | All | All |
| Hardware | Cisco | 7609-s | - | All | All | All |
| Hardware | Cisco | 7609-s | - | All | All | All |
| Hardware | Cisco | 7613-s | - | All | All | All |
| Hardware | Cisco | 7613-s | - | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | All | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.3(1.23) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.3(1.51) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.3\(1.23\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.3\(1.51\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.4(1.24) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.4\(1.24\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.6(4) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.6\(4\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.7(1) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.7(1.17) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.7\(1.17\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.7\(1\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.8(2.12) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.8(2.21) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.8\(2.12\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.8\(2.21\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.9(1.77) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.9\(1.77\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 99.1(20.190) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 99.1\(20.190\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 99.2(0.32) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 99.2\(0.32\) | All | All | All |
| Operating System | Cisco | Adaptive Security Appliance Software | All | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | All | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.3\(1.23\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.3\(1.51\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 101.4\(1.24\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.6\(4\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.7\(1.17\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.7\(1\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.8\(2.12\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.8\(2.21\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 9.9\(1.77\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 99.1\(20.190\) | All | All | All |
| Application | Cisco | Adaptive Security Appliance Software | 99.2\(0.32\) | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | - | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v10 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v30 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v5 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v50 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v10 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v30 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v5 | All | All | All |
| Application | Cisco | Adaptive Security Virtual Appliance | v50 | All | All | All |
| Hardware | Cisco | Asa-5505 | - | All | All | All |
| Hardware | Cisco | Asa-5505 | - | All | All | All |
| Hardware | Cisco | Asa-5506-x | - | All | All | All |
| Hardware | Cisco | Asa-5506-x | - | All | All | All |
| Hardware | Cisco | Asa-5506h-x | - | All | All | All |
| Hardware | Cisco | Asa-5506h-x | - | All | All | All |
| Hardware | Cisco | Asa-5512-x | - | All | All | All |
| Hardware | Cisco | Asa-5512-x | - | All | All | All |
| Hardware | Cisco | Asa-5515-x | - | All | All | All |
| Hardware | Cisco | Asa-5515-x | - | All | All | All |
| Hardware | Cisco | Asa-5520 | - | All | All | All |
| Hardware | Cisco | Asa-5520 | - | All | All | All |
| Hardware | Cisco | Asa-5540 | - | All | All | All |
| Hardware | Cisco | Asa-5540 | - | All | All | All |
| Hardware | Cisco | Asa-5545-x | - | All | All | All |
| Hardware | Cisco | Asa-5545-x | - | All | All | All |
| Hardware | Cisco | Asa-5555-x | - | All | All | All |
| Hardware | Cisco | Asa-5555-x | - | All | All | All |
| Hardware | Cisco | Asa-5585-x | - | All | All | All |
| Hardware | Cisco | Asa-5585-x | - | All | All | All |
| Hardware | Cisco | Asa 5506-x | - | All | All | All |
| Hardware | Cisco | Asa 5506-x | - | All | All | All |
| Hardware | Cisco | Asa 5506w-x | - | All | All | All |
| Hardware | Cisco | Asa 5506w-x | - | All | All | All |
| Hardware | Cisco | Asa 5508-x | - | All | All | All |
| Hardware | Cisco | Asa 5508-x | - | All | All | All |
| Hardware | Cisco | Asa 5510 | - | All | All | All |
| Hardware | Cisco | Asa 5510 | - | All | All | All |
| Hardware | Cisco | Asa 5516-x | - | All | All | All |
| Hardware | Cisco | Asa 5516-x | - | All | All | All |
| Hardware | Cisco | Asa 5525-x | - | All | All | All |
| Hardware | Cisco | Asa 5525-x | - | All | All | All |
| Hardware | Cisco | Asa 5550 | - | All | All | All |
| Hardware | Cisco | Asa 5550 | - | All | All | All |
| Hardware | Cisco | Asa 5555-x | - | All | All | All |
| Hardware | Cisco | Asa 5555-x | - | All | All | All |
| Hardware | Cisco | Asa 5580 | - | All | All | All |
| Hardware | Cisco | Asa 5580 | - | All | All | All |
| Hardware | Cisco | Catalyst 6500-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6500-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6503-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6504-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6506-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6509-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6509-neb-a | - | All | All | All |
| Hardware | Cisco | Catalyst 6509-v-e | - | All | All | All |
| Hardware | Cisco | Catalyst 6513 | - | All | All | All |
| Hardware | Cisco | Catalyst 6513-e | - | All | All | All |
| Hardware | Cisco | Firepower 2110 | - | All | All | All |
| Hardware | Cisco | Firepower 2110 | - | All | All | All |
| Hardware | Cisco | Firepower 2120 | - | All | All | All |
| Hardware | Cisco | Firepower 2120 | - | All | All | All |
| Hardware | Cisco | Firepower 2130 | - | All | All | All |
| Hardware | Cisco | Firepower 2130 | - | All | All | All |
| Hardware | Cisco | Firepower 2140 | - | All | All | All |
| Hardware | Cisco | Firepower 2140 | - | All | All | All |
| Hardware | Cisco | Firepower 4110 | - | All | All | All |
| Hardware | Cisco | Firepower 4110 | - | All | All | All |
| Hardware | Cisco | Firepower 4120 | - | All | All | All |
| Hardware | Cisco | Firepower 4120 | - | All | All | All |
| Hardware | Cisco | Firepower 4140 | - | All | All | All |
| Hardware | Cisco | Firepower 4140 | - | All | All | All |
| Hardware | Cisco | Firepower 4150 | - | All | All | All |
| Hardware | Cisco | Firepower 4150 | - | All | All | All |
| Hardware | Cisco | Firepower 9300 | - | All | All | All |
| Hardware | Cisco | Firepower 9300 | - | All | All | All |
| Application | Cisco | Firepower Threat Defense | All | All | All | All |
| Application | Cisco | Firepower Threat Defense | All | All | All | All |
| Application | Cisco | Firepower Threat Defense Virtual | - | All | All | All |
| Application | Cisco | Firepower Threat Defense Virtual | - | All | All | All |
| Application | Cisco | Firepower Threat Defense Virtual | - | All | All | All |
| Hardware | Cisco | Isa-3000-2c2f | - | All | All | All |
| Hardware | Cisco | Isa-3000-2c2f | - | All | All | All |
| Hardware | Cisco | Isa-3000-4c | - | All | All | All |
| Hardware | Cisco | Isa-3000-4c | - | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Cisco Adaptive Security Appliance Application Layer Protocol Inspection Denial of Service Vulnerabilities | CONFIRM | tools.cisco.com | Vendor Advisory |
| Cisco ASA Application Layer Protocol Inspection Logic Errors Let Remote Users Cause the Target System to Reload - SecurityTracker | SECTRACK | www.securitytracker.com | Third Party Advisory, VDB Entry |
| Multiple Cisco Products CVE-2018-0240 Multiple Denial of Service Vulnerabilities | BID | www.securityfocus.com | Third Party Advisory, VDB Entry |
| Rockwell Automation Allen-Bradley Stratix 5950 | CISA | MISC | ics-cert.us-cert.gov | Third Party Advisory, US Government Resource |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
Legacy QID Mappings
- 590341 Rockwell Automation Allen-Bradley Stratix 5950 Multiple Vulnerabilities (ICSA-18-184-01)