CVE-2018-0291

Name of the Vulnerable Software and Affected Versions Cisco NX-OS Software versions prior to the fixed version

Description A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor could allow an authenticated, remote attacker to cause the SNMP application on an affected device to restart unexpectedly. The vulnerability is due to improper validation of SNMP protocol data units (PDUs) in SNMP packets. An attacker could exploit this vulnerability by sending a crafted SNMP packet to an affected device. A successful exploit could allow the attacker to cause the SNMP application to restart multiple times, leading to a system-level restart and a denial of service (DoS) condition.

Recommendations For Cisco NX-OS Software, update to a version that includes the fix for this vulnerability. As a temporary workaround, consider restricting access to the SNMP application to minimize the risk of exploitation. Avoid using the vulnerable SNMP protocol data units (PDUs) in SNMP packets until the issue is resolved.