====================================================================


                             CERT-Renater

                 Note d'Information No. 2018/VULN235
_____________________________________________________________________

DATE                : 19/07/2018

HARDWARE PLATFORM(S): Cisco Nexus 9000 Series Fabric Switches.

OPERATING SYSTEM(S):  NX-OS Software.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-20180718-nexus-9000-dos
_____________________________________________________________________

Cisco Security Advisory: Cisco Nexus 9000 Series Fabric Switches
Application-Centric Infrastructure Mode DHCP Version 6 Denial of Service
Vulnerability

Advisory ID: cisco-20180718-nexus-9000-dos

Revision: 1.0

For Public Release: 2018 July 18 16:00 GMT

Last Updated: 2018 July 18 16:00 GMT

CVE ID(s): CVE-2018-0372

CVSS Score v(3): 8.6 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

+---------------------------------------------------------------------

Summary

=======

A vulnerability in the DHCPv6 feature of the Cisco Nexus 9000 Series
Fabric Switches in Application-Centric Infrastructure (ACI) Mode could
allow an unauthenticated, remote attacker to cause the device to run low
on system memory, which could result in a Denial of Service (DoS)
condition on an affected system.

The vulnerability is due to improper memory management when DHCPv6
packets are received on an interface of the targeted device. An attacker
could exploit this vulnerability by sending a high number of malicious
DHCPv6 packets to be processed by an affected device. A successful
exploit could allow the attacker to cause the system to run low on
memory, which could cause an eventual reboot of an affected device. The
vulnerability only applies to IPv6 protocol packets and not for IPv4
protocol packets.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-20180718-nexus-9000-dos
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-20180718-nexus-9000-dos"]


=========================================================
+ CERT-RENATER        | tel : 01-53-94-20-44            +
+ 23/25 Rue Daviel    | fax : 01-53-94-20-41            +
+ 75013 Paris         | email:cert@support.renater.fr   +
=========================================================