CVE-2018-0378

CVE Database · CVE-2018-0378

CVE-2018-0378

· N/AModified

CVSS v3.1

N/A

EPSS

4.48%

Published

Oct 17, 2018

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the Precision Time Protocol (PTP) feature of Cisco Nexus 5500, 5600, and 6000 Series Switches running Cisco NX-OS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a lack of protection against PTP frame flood attacks. An attacker could exploit this vulnerability by sending large streams of malicious IPv4 or IPv6 PTP traffic to the affected device. A successful exploit could allow the attacker to cause a DoS condition, impacting the traffic passing through the device.

Weaknesses (CWE)

CWE-20CWE-20

Affected Products (13)

cisco · nx-osvulnerable

cisco · nexus_5548p

cisco · nexus_5548up

cisco · nexus_5596t

cisco · nexus_5596up

cisco · nexus_56128p

cisco · nexus_5624q

cisco · nexus_5648q

cisco · nexus_5672up