CVE-2018-0397

EPSS 0.78%
Published 01.08.2018 20:29:00
Last modified 21.11.2024 03:38:08
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in Cisco AMP for Endpoints Mac Connector Software installed on Apple macOS 10.12 could allow an unauthenticated, remote attacker to cause a kernel panic on an affected system, resulting in a denial of service (DoS) condition. The vulnerability exists if the affected software is running in Block network conviction mode. Exploitation could occur if the system that is running the affected software starts a server process and an address in the IP blacklist cache of the affected software attempts to connect to the affected system. A successful exploit could allow the attacker to cause a kernel panic on the system that is running the affected software, resulting in a DoS condition. Cisco Bug IDs: CSCvk08192.

Affected products Warnungen 0 Metrics 3 CWE 0 References 5

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Advanced Malware Protection For Endpoints Version-

Apple ≫ macOS X Version10.12.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.78%	0.729

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.9	2.2	3.6	CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	7.1	8.6	6.9	AV:N/AC:M/Au:N/C:N/I:N/A:C

http://www.securityfocus.com/bid/104946

Third Party Advisory

VDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180801-fampmac

Patch

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2018-0397

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2018-0397

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2018-0397

EUVD