Cisco Adaptive Security Appliance (ASA) Software CVE-2018-0228 Denial of Service Vulnerability
BID:104220
CVE-2018-228 |Info
Cisco Adaptive Security Appliance (ASA) Software CVE-2018-0228 Denial of Service Vulnerability
| Bugtraq ID: | 104220 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-2018-0228 |
| Remote: | Yes |
| Local: | No |
| Published: | Apr 18 2018 12:00AM |
| Updated: | Apr 18 2018 12:00AM |
| Credit: | The vendor reported this issue. |
| Vulnerable: |
Cisco Firepower Threat Defense Software 6.2.2 Cisco Firepower Threat Defense Software 6.2 Cisco Firepower Threat Defense Software 6.1 Cisco Firepower Threat Defense Software 6.2.1 Cisco Firepower Threat Defense Software 6.1.0.5 Cisco Firepower Threat Defense Software 6.0.1.4 Cisco Firepower Threat Defense Software 6.0.1 Cisco Firepower Threat Defense Software 6.0 Cisco FirePOWER 9300 ASA Security Module 0 Cisco Firepower 4110 Security Appliance 0 Cisco Firepower 2100 Series Security Appliance 0 Cisco ASA Services Module for Cisco Catalyst 6500 Series Switches and 0 Cisco ASA 5500-X Series Next-Generation Firewalls 0 Cisco ASA 5500 Series Adaptive Security Appliances 0 Cisco Adaptive Security Virtual Appliance (ASAv) 0 Cisco Adaptive Security Appliance Software 9.5.1 Cisco Adaptive Security Appliance Software 9.5 Cisco Adaptive Security Appliance Software 9.4.1 Cisco Adaptive Security Appliance Software 9.4 Cisco Adaptive Security Appliance Software 9.3 Cisco Adaptive Security Appliance Software 9.2 Cisco Adaptive Security Appliance Software 9.9 Cisco Adaptive Security Appliance Software 9.8.2.14 Cisco Adaptive Security Appliance Software 9.8 Cisco Adaptive Security Appliance Software 9.7 Cisco Adaptive Security Appliance Software 9.6(2.1) Cisco Adaptive Security Appliance Software 9.6 Cisco Adaptive Security Appliance Software 9.5(3.1) Cisco Adaptive Security Appliance Software 9.5(2.2) Cisco Adaptive Security Appliance Software 9.4(3.11) Cisco Adaptive Security Appliance Software 9.4(2.4) Cisco Adaptive Security Appliance Software 9.3(3.7) Cisco Adaptive Security Appliance Software 9.3(3.11) Cisco Adaptive Security Appliance Software 9.3(.2) Cisco Adaptive Security Appliance Software 9.2(4.5) Cisco Adaptive Security Appliance Software 9.2(4.17) Cisco Adaptive Security Appliance Software 9.1(7.11) Cisco Adaptive Security Appliance Software 9.1(7) Cisco Adaptive Security Appliance Software 9.1(3) Cisco Adaptive Security Appliance Software 9.1(2) Cisco Adaptive Security Appliance Software 9.1(1.7) Cisco Adaptive Security Appliance Software 9.1(1) Cisco Adaptive Security Appliance Software 9.1(.5) Cisco Adaptive Security Appliance Software 9.1(.2) Cisco Adaptive Security Appliance Software 9.1 Cisco 3000 Series Industrial Security Appliance (ISA) 0 |
| Not Vulnerable: |
Cisco Firepower Threat Defense Software 6.2.2.2 Cisco Firepower Threat Defense Software 6.2.0.5 Cisco Firepower Threat Defense Software 6.1.0.6 Cisco Adaptive Security Appliance Software 9.9.1 Cisco Adaptive Security Appliance Software 9.9.2.1 Cisco Adaptive Security Appliance Software 9.8.2.28 Cisco Adaptive Security Appliance Software 9.8.2.24 Cisco Adaptive Security Appliance Software 9.7.1.24 Cisco Adaptive Security Appliance Software 9.7.1.16 Cisco Adaptive Security Appliance Software 9.6.4.6 Cisco Adaptive Security Appliance Software 9.6.3.17 Cisco Adaptive Security Appliance Software 9.4.4.14 Cisco Adaptive Security Appliance Software 9.4.4.13 Cisco Adaptive Security Appliance Software 9.2.4.27 Cisco Adaptive Security Appliance Software 9.1.7.20 |
Discussion
Cisco Adaptive Security Appliance (ASA) Software CVE-2018-0228 Denial of Service Vulnerability
Cisco Adaptive Security Appliance (ASA) Software is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to cause a denial-of-service condition due to excessive CPU memory consumption.
This issue is being tracked by Cisco Bug ID CSCvf63718.
Cisco Adaptive Security Appliance (ASA) Software is prone to a remote denial-of-service vulnerability.
Exploiting this issue allows remote attackers to cause a denial-of-service condition due to excessive CPU memory consumption.
This issue is being tracked by Cisco Bug ID CSCvf63718.
Exploit / POC
Cisco Adaptive Security Appliance (ASA) Software CVE-2018-0228 Denial of Service Vulnerability
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Currently, we are not aware of any working exploits. If you feel we are in error or if you are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Cisco Adaptive Security Appliance (ASA) Software CVE-2018-0228 Denial of Service Vulnerability
Solution:
Updates are available. Please see the references or vendor advisory for more information.
Solution:
Updates are available. Please see the references or vendor advisory for more information.
References
Cisco Adaptive Security Appliance (ASA) Software CVE-2018-0228 Denial of Service Vulnerability
References:
References: