CVE-2018-0302

Name of the Vulnerable Software and Affected Versions Cisco FXOS Software versions (affected versions not specified) Cisco UCS Fabric Interconnect Software versions (affected versions not specified)

Description A vulnerability in the CLI parser could allow an authenticated, local attacker to cause a buffer overflow on an affected device. The issue is due to incorrect input validation in the CLI parser subsystem. An attacker could exploit this by exceeding the expected length of user input, potentially allowing the execution of arbitrary code with root privileges on the affected system. This affects various Cisco products, including Firepower 4100 Series Next-Generation Firewall, Firepower 9300 Security Appliance, and several UCS Series Fabric Interconnects.

Recommendations For Cisco FXOS Software, update to a version that includes the fix for the vulnerability. For Cisco UCS Fabric Interconnect Software, update to a version that includes the fix for the vulnerability. As a temporary workaround, consider restricting access to the CLI parser subsystem until a patch is available. Avoid using excessively long input in the CLI parser to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.