CVE-2018-0395

Name of the Vulnerable Software and Affected Versions Cisco FXOS Software (affected versions not specified) Cisco NX-OS Software (affected versions not specified)

Description A vulnerability in the Link Layer Discovery Protocol (LLDP) implementation could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition when the device unexpectedly reloads. The issue is due to improper input validation of certain type, length, value (TLV) fields of the LLDP frame header. An attacker could exploit this by sending a crafted LLDP packet to an interface on the targeted device, potentially causing the switch to reload unexpectedly.

Recommendations For Cisco FXOS Software, update to a version that includes the fix for this issue. For Cisco NX-OS Software, update to a version that includes the fix for this issue. As a temporary workaround, consider restricting access to the LLDP protocol on affected devices until a patch is available.