Symptom
A vulnerability in the implementation of a specific CLI command and the associated Simple Network
Management Protocol (SNMP) Management Information Base (MIB) for Cisco Nexus 3000 and 9000
Series Switches could allow an authenticated, remote attacker to exhaust system memory on an affected
device, resulting in a denial of service (DoS) condition.
The vulnerability is due to the incorrect implementation of the CLI command, resulting in a failure to free all
allocated memory upon completion. An attacker could exploit this vulnerability by authenticating to the affected
device and repeatedly issuing a specific CLI command or sending a specific SNMP poll request for a specific
Object Identifier (OID). A successful exploit could allow the attacker to cause the IP routing process to restart or
to cause a device reset, resulting in a denial of service (DoS) condition.
Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180620-n3k-n9k-clisnmp
Conditions
Please refer to the Security Advisory.
Workaround
Please refer to the Security Advisory.
Further Problem Description
Please refer to the Security Advisory.
PSIRT Evaluation:
The Cisco PSIRT has assigned this bug the following CVSS version 3 score. The Base CVSS score as of the time of evaluation is 7.7:
https://tools.cisco.com/security/center/cvssCalculator.x?version=3.0&vector=CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:N/I:N/A:H/E:X/RL:X/RC:X
CVE ID CVE-2018-0309 has been assigned to document this issue.
Additional information on Cisco's security vulnerability policy can be found at the following URL:
http://www.cisco.com/en/US/products/products_security_vulnerability_policy.html
