CVE-2018-0233

Name of the Vulnerable Software and Affected Versions Cisco Firepower System Software versions 6.0.0 and later

Description A vulnerability in the Secure Sockets Layer (SSL) packet reassembly functionality of the detection engine could allow an unauthenticated, remote attacker to cause the detection engine to consume excessive system memory on an affected device, leading to a denial of service (DoS) condition. The vulnerability is due to the affected software improperly handling changes to SSL connection states. An attacker could exploit this vulnerability by sending crafted SSL connections through an affected device, potentially causing the device to require a manual reload to recover.

Recommendations For Cisco Firepower System Software versions 6.0.0 and later, update the software to a version that includes the fix for Cisco Bug ID CSCve23031. As a temporary workaround, consider restricting access to the detection engine or implementing additional monitoring to quickly identify and respond to potential DoS conditions.