Vulnerability Description
A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect bounds checks for certain values in packets that are sent to the Zero Touch Provisioning service of the affected software. An attacker could exploit this vulnerability by sending malicious packets to the affected software for processing. When the software processes the packets, a buffer overflow condition could occur and cause an affected device to reload. A successful exploit could allow the attacker to cause a temporary DoS condition while the device reloads. This vulnerability can be exploited only by traffic that is destined for an affected device. It cannot be exploited by traffic that is transiting a device. This vulnerability affects the following Cisco products if they are running a release of the Cisco SD-WAN Solution prior to Release 18.3.0: vBond Orchestrator Software, vManage Network Management Software, vSmart Controller Software. Cisco Bug IDs: CSCvi69914.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Vbond Orchestrator | - |
| Cisco | Vedge-Plus | - |
| Cisco | Vedge-Pro | - |
| Cisco | Vmanage Network Management | - |
| Cisco | Vsmart Controller | - |
| Cisco | Vedge-100 Firmware | < 18.3.0 |
| Cisco | Vedge-100 | - |
| Cisco | Vedge 100B Firmware | < 18.3.0 |
| Cisco | Vedge 100B | - |
| Cisco | Vedge 100M Firmware | < 18.3.0 |
| Cisco | Vedge 100M | - |
| Cisco | Vedge 100Wm Firmware | < 18.3.0 |
| Cisco | Vedge 100Wm | - |
| Cisco | Vedge-1000 Firmware | < 18.3.0 |
| Cisco | Vedge-1000 | - |
| Cisco | Vedge-2000 Firmware | < 18.3.0 |
| Cisco | Vedge-2000 | - |
| Cisco | Vedge-5000 Firmware | < 18.3.0 |
| Cisco | Vedge-5000 | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/104855Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securityfocus.com/bid/104855Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2018-0346?
CVE-2018-0346 is a vulnerability with a CVSS score of 7.5 (HIGH). A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. ...
How severe is CVE-2018-0346?
CVE-2018-0346 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-0346?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Vbond Orchestrator, Cisco Vedge-Plus, Cisco Vedge-Pro, Cisco Vmanage Network Management, Cisco Vsmart Controller.