CVE-2018-0282
6.8
Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
Exploitability: 2.2 / Impact: 4.0
Source: NVD
Description
A vulnerability in the TCP socket code of Cisco IOS and IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to a state condition between the socket state and the transmission control block (TCB) state. While this vulnerability potentially affects all TCP applications, the only affected application observed so far is the HTTP server. An attacker could exploit this vulnerability by sending specific HTTP requests at a sustained rate to a reachable IP address of the affected software. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a denial of service (DoS) condition on an affected device.
Affected (2)
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| Version 15.2(2)e4 | |
| All versions |
| Running on/with | Platform Versions |
|---|---|
Cisco Catalyst 2960 Plus 24lc L | All versions |
Cisco Catalyst 2960 Plus 24lc S | All versions |
Cisco Catalyst 2960 Plus 24pc L | All versions |
Cisco Catalyst 2960 Plus 24pc S | All versions |
Cisco Catalyst 2960 Plus 24tc L | All versions |
Cisco Catalyst 2960 Plus 24tc S | All versions |
Cisco Catalyst 2960 Plus 48pst L | All versions |
Cisco Catalyst 2960 Plus 48pst S | All versions |
Cisco Catalyst 2960 Plus 48tc L | All versions |
Cisco Catalyst 2960 Plus 48tc S | All versions |
Cisco Catalyst 2960c 12pc L | All versions |
Cisco Catalyst 2960c 8pc L | All versions |
Cisco Catalyst 2960c 8tc L | All versions |
Cisco Catalyst 2960c 8tc S | All versions |
Cisco Catalyst 2960cg 8tc L | All versions |
Cisco Catalyst 2960cpd 8pt L | All versions |
Cisco Catalyst 2960cpd 8tt L | All versions |
Cisco Catalyst 2960s 24pd L | All versions |
Cisco Catalyst 2960s 24ps L | All versions |
Cisco Catalyst 2960s 24td L | All versions |
Cisco Catalyst 2960s 24ts L | All versions |
Cisco Catalyst 2960s 48fpd L | All versions |
Cisco Catalyst 2960s 48fps L | All versions |
Cisco Catalyst 2960s 48lpd L | All versions |
Cisco Catalyst 2960s 48lps L | All versions |
Cisco Catalyst 2960s 48td L | All versions |
Cisco Catalyst 2960s 48ts L | All versions |
Cisco Catalyst 2960s 48ts S | All versions |
Cisco Catalyst 2960s F24ps L | All versions |
Cisco Catalyst 2960s F24ts L | All versions |
Cisco Catalyst 2960s F24ts S | All versions |
Cisco Catalyst 2960s F48fps L | All versions |
Cisco Catalyst 2960s F48lps L | All versions |
Cisco Catalyst 2960s F48ts L | All versions |
Cisco Catalyst 2960s F48ts S | All versions |
Cisco Catalyst 2960x 24pd L | All versions |
Cisco Catalyst 2960x 24ps L | All versions |
Cisco Catalyst 2960x 24psq L | All versions |
Cisco Catalyst 2960x 24td L | All versions |
Cisco Catalyst 2960x 24ts L | All versions |
Cisco Catalyst 2960x 24ts Ll | All versions |
Cisco Catalyst 2960x 48fpd L | All versions |
Cisco Catalyst 2960x 48fps L | All versions |
Cisco Catalyst 2960x 48lpd L | All versions |
Cisco Catalyst 2960x 48lps L | All versions |
Cisco Catalyst 2960x 48td L | All versions |
Cisco Catalyst 2960x 48ts L | All versions |
Cisco Catalyst 2960x 48ts Ll | All versions |
Cisco Catalyst 2960xr 24pd I | All versions |
Cisco Catalyst 2960xr 24ps I | All versions |
Cisco Catalyst 2960xr 24td I | All versions |
Cisco Catalyst 2960xr 24ts I | All versions |
Cisco Catalyst 2960xr 48fpd I | All versions |
Cisco Catalyst 2960xr 48fps I | All versions |
Cisco Catalyst 2960xr 48lpd I | All versions |
Cisco Catalyst 2960xr 48lps I | All versions |
Cisco Catalyst 2960xr 48td I | All versions |
Cisco Catalyst 2960xr 48ts I | All versions |
Cisco Catalyst 3560c 12pc S | All versions |
Cisco Catalyst 3560c 8pc S | All versions |
Cisco Catalyst 3560cg 8pc S | All versions |
Cisco Catalyst 3560cg 8tc S | All versions |
Cisco Catalyst 3560cpd 8pt S | All versions |
Cisco Catalyst 3560x 24p E | All versions |
Cisco Catalyst 3560x 24p L | All versions |
Cisco Catalyst 3560x 24p S | All versions |
Cisco Catalyst 3560x 24t E | All versions |
Cisco Catalyst 3560x 24t L | All versions |
Cisco Catalyst 3560x 24t S | All versions |
Cisco Catalyst 3560x 24u E | All versions |
Cisco Catalyst 3560x 24u L | All versions |
Cisco Catalyst 3560x 24u S | All versions |
Cisco Catalyst 3560x 48p E | All versions |
Cisco Catalyst 3560x 48p L | All versions |
Cisco Catalyst 3560x 48p S | All versions |
Cisco Catalyst 3560x 48pf E | All versions |
Cisco Catalyst 3560x 48pf L | All versions |
Cisco Catalyst 3560x 48pf S | All versions |
Cisco Catalyst 3560x 48t E | All versions |
Cisco Catalyst 3560x 48t L | All versions |
Cisco Catalyst 3560x 48t S | All versions |
Cisco Catalyst 3560x 48u E | All versions |
Cisco Catalyst 3560x 48u L | All versions |
Cisco Catalyst 3560x 48u S | All versions |
Cisco Catalyst 3750x 12s E | All versions |
Cisco Catalyst 3750x 12s S | All versions |
Cisco Catalyst 3750x 24p E | All versions |
Cisco Catalyst 3750x 24p L | All versions |
Cisco Catalyst 3750x 24p S | All versions |
Cisco Catalyst 3750x 24s E | All versions |
Cisco Catalyst 3750x 24s S | All versions |
Cisco Catalyst 3750x 24t E | All versions |
Cisco Catalyst 3750x 24t L | All versions |
Cisco Catalyst 3750x 24t S | All versions |
Cisco Catalyst 3750x 24u E | All versions |
Cisco Catalyst 3750x 24u L | All versions |
Cisco Catalyst 3750x 24u S | All versions |
Cisco Catalyst 3750x 48p E | All versions |
Cisco Catalyst 3750x 48p L | All versions |
Cisco Catalyst 3750x 48p S | All versions |
Cisco Catalyst 3750x 48pf E | All versions |
Cisco Catalyst 3750x 48pf L | All versions |
Cisco Catalyst 3750x 48pf S | All versions |
Cisco Catalyst 3750x 48t E | All versions |
Cisco Catalyst 3750x 48t L | All versions |
Cisco Catalyst 3750x 48t S | All versions |
Cisco Catalyst 3750x 48u E | All versions |
Cisco Catalyst 3750x 48u L | All versions |
Cisco Catalyst 3750x 48u S | All versions |
Cisco Catalyst 4500 Supervisor Engine 6 E | All versions |
Cisco Catalyst 4500 Supervisor Engine 6l E | All versions |
Cisco Catalyst 4900m | All versions |
Cisco Catalyst 4948e | All versions |
Cisco Catalyst 4948e F | All versions |
Cisco Embedded Service 2020 24tc Con | All versions |
Cisco Embedded Service 2020 24tc Con B | All versions |
Cisco Embedded Service 2020 24tc Ncp | All versions |
Cisco Embedded Service 2020 24tc Ncp B | All versions |
Cisco Embedded Service 2020 Con | All versions |
Cisco Embedded Service 2020 Con B | All versions |
Cisco Embedded Service 2020 Ncp | All versions |
Cisco Embedded Service 2020 Ncp B | All versions |
Cisco Ie 3010 16s 8pc | All versions |
Cisco Ie 3010 24tc | All versions |
Cisco Ie 2000 16ptc G | All versions |
Cisco Ie 2000 16t67 | All versions |
Cisco Ie 2000 16t67p | All versions |
Cisco Ie 2000 16tc | All versions |
Cisco Ie 2000 16tc G | All versions |
Cisco Ie 2000 16tc G E | All versions |
Cisco Ie 2000 16tc G N | All versions |
Cisco Ie 2000 16tc G X | All versions |
Cisco Ie 2000 24t67 | All versions |
Cisco Ie 2000 4s Ts G | All versions |
Cisco Ie 2000 4t | All versions |
Cisco Ie 2000 4t G | All versions |
Cisco Ie 2000 4ts | All versions |
Cisco Ie 2000 4ts G | All versions |
Cisco Ie 2000 8t67 | All versions |
Cisco Ie 2000 8t67p | All versions |
Cisco Ie 2000 8tc | All versions |
Cisco Ie 2000 8tc G | All versions |
Cisco Ie 2000 8tc G E | All versions |
Cisco Ie 2000 8tc G N | All versions |
Cisco Ie 3000 4tc | All versions |
Cisco Ie 3000 8tc | All versions |
Cisco Sm X Layer 2/3 Etherswitch Service Module | All versions |
Related CWEs
References (4)
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.