cisco advanced-malware-protection-endpoints CVE-2018-0237 is a vulnerability in Cisco Advanced Malware Protection Endpoints
Published on April 19, 2018

A vulnerability in the file type detection mechanism of the Cisco Advanced Malware Protection (AMP) for Endpoints macOS Connector could allow an unauthenticated, remote attacker to bypass malware detection. The vulnerability occurs because the software relies on only the file extension for detecting DMG files. An attacker could exploit this vulnerability by sending a DMG file with a nonstandard extension to a device that is running an affected AMP for Endpoints macOS Connector. An exploit could allow the attacker to bypass configured malware detection. Cisco Bug IDs: CSCve34034.

NVD

Weakness Type

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.


Products Associated with CVE-2018-0237

Want to know whenever a new CVE is published for Cisco Advanced Malware Protection Endpoints? stack.watch will email you.

Cisco Advanced Malware Protection Endpoints
 

Exploit Probability

EPSS
0.61%
Percentile
69.30%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.