CVE-2018-0285
Description
A vulnerability in service logging for Cisco Prime Service Catalog could allow an authenticated, remote attacker to deny service to the user interface. The vulnerability is due to exhaustion of disk space. An attacker could exploit this vulnerability by performing certain operations that lead to excessive logging. A successful exploit could allow the attacker to deny service to the user interface. Cisco Bug IDs: CSCvd39568.
Risk Information
Base Score
6.5
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
EPSS Score
Exploitation Probability
0.882
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Cisco Prime Service Catalog User Interface Denial of Service Vulnerability For Cisco Prime Service Catalog | NCM |
| Uncontrolled Resource Consumption Vulnerability (CVE-2018-0285) | NCM |
Patch Details
Click to see the patches provided by ManageEngine for this CVE
| Patch ID | Patch Description |
|---|---|
| PATCH-1706010 | Security Update for Cisco Prime Service Catalog 11.1_VA_OS_Patch |
References
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234