CVE-2018-0346
Description
A vulnerability in the Zero Touch Provisioning service of the Cisco SD-WAN Solution could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to incorrect bounds checks for certain values in packets that are sent to the Zero Touch Provisioning service of the affected software. An attacker could exploit this vulnerability by sending malicious packets to the affected software for processing. When the software processes the packets, a buffer overflow condition could occur and cause an affected device to reload. A successful exploit could allow the attacker to cause a temporary DoS condition while the device reloads. This vulnerability can be exploited only by traffic that is destined for an affected device. It cannot be exploited by traffic that is transiting a device. This vulnerability affects the following Cisco products if they are running a release of the Cisco SD-WAN Solution prior to Release 18.3.0: vBond Orchestrator Software, vManage Network Management Software, vSmart Controller Software. Cisco Bug IDs: CSCvi69914.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A buffer overflow in Cisco SD-WAN Zero Touch Provisioning allows unauthenticated remote attackers to cause denial of service via crafted packets.
Vulnerability
The vulnerability resides in the Zero Touch Provisioning (ZTP) service of the Cisco SD-WAN Solution, affecting vBond Orchestrator Software, vManage Network Management Software, and vSmart Controller Software running releases prior to 18.3.0. The issue is due to incorrect bounds checks for certain values in packets sent to the ZTP service, leading to a buffer overflow condition when processed [1].
Exploitation
An unauthenticated, remote attacker can exploit this vulnerability by sending specially crafted packets destined for an affected device. Malicious traffic transiting the device cannot trigger the flaw. The attacker only needs network connectivity to the target device; no authentication or user interaction is required [1].
Impact
Successful exploitation causes a buffer overflow that triggers a device reload, resulting in a temporary denial of service (DoS) condition until the device recovers. The impact is limited to availability, with no compromise of confidentiality or integrity [1].
Mitigation
Cisco has released free software updates to fix this vulnerability. Affected products should be upgraded to Release 18.3.0 or later. Customers can obtain updates from Cisco and should consult the Cisco Security Advisory for further details [1]. No workarounds are available.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
3- Range: <18.3.0
- Range: <18.3.0
- Range: <18.3.0
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- www.securityfocus.com/bid/104855mitrevdb-entryx_refsource_BID
- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180718-sdwan-dosmitrex_refsource_CONFIRM
News mentions
0No linked articles in our index yet.