CVE-2018-0462
Cisco Enterprise NFV Infrastructure Software Denial of Service Vulnerability
Vexday Risk Score
3Bajo
Decisión SSVC (CISA)
Track
Sin señal de explotación → monitorear
CVSS —EPSS 1.5%KEV nãoPoC —Nuclei —Metasploit —Patch referenciado
Ciclo de vida
05 oct 2018Publicada en NVD
Recomendación: Monitorear — sin señal de explotación por ahora.
A vulnerability in the user management functionality of Cisco Enterprise NFV Infrastructure Software (NFVIS) could allow an authenticated, remote attacker to perform a denial of service (DoS) attack against an affected system. The vulnerability is due to insufficient validation of user-provided input. An attacker could exploit this vulnerability by logging in with a highly privileged user account and performing a sequence of specific user management operations that interfere with the underlying operating system. A successful exploit could allow the attacker to permanently degrade the functionality of the affected system.
Productos afectados
Cisco · Cisco Enterprise NFV Infrastructure Software¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →