7.8
CVE-2018-0159
- EPSS 6.18%
- Published 28.03.2018 22:29:00
- Last modified 27.01.2025 20:17:00
- Source psirt@cisco.com
- Teams watchlist Login
- Open Login
A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to improper validation of specific IKEv1 packets. An attacker could exploit this vulnerability by sending crafted IKEv1 packets to an affected device during an IKE negotiation. A successful exploit could allow the attacker to cause an affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCuj73916.
Data is provided by the National Vulnerability Database (NVD)
Cisco ≫ Ios Version15.3(3)s
Cisco ≫ Asr 901-12c-f-d Version-
Cisco ≫ Asr 901-12c-ft-d Version-
Cisco ≫ Asr 901-4c-f-d Version-
Cisco ≫ Asr 901-4c-ft-d Version-
Cisco ≫ Asr 901-6cz-f-a Version-
Cisco ≫ Asr 901-6cz-f-d Version-
Cisco ≫ Asr 901-6cz-ft-a Version-
Cisco ≫ Asr 901-6cz-ft-d Version-
Cisco ≫ Me 3600x-24cx-m Version-
Cisco ≫ Me 3600x-24fs-m Version-
Cisco ≫ Me 3600x-24ts-m Version-
Cisco ≫ Me 3800x-24fs-m Version-
Cisco ≫ Asr 901-12c-ft-d Version-
Cisco ≫ Asr 901-4c-f-d Version-
Cisco ≫ Asr 901-4c-ft-d Version-
Cisco ≫ Asr 901-6cz-f-a Version-
Cisco ≫ Asr 901-6cz-f-d Version-
Cisco ≫ Asr 901-6cz-ft-a Version-
Cisco ≫ Asr 901-6cz-ft-d Version-
Cisco ≫ Me 3600x-24cx-m Version-
Cisco ≫ Me 3600x-24fs-m Version-
Cisco ≫ Me 3600x-24ts-m Version-
Cisco ≫ Me 3800x-24fs-m Version-
Cisco ≫ Ios Xe Version15.3(3)s
Cisco ≫ Asr 901-12c-f-d Version-
Cisco ≫ Asr 901-12c-ft-d Version-
Cisco ≫ Asr 901-4c-f-d Version-
Cisco ≫ Asr 901-4c-ft-d Version-
Cisco ≫ Asr 901-6cz-f-a Version-
Cisco ≫ Asr 901-6cz-f-d Version-
Cisco ≫ Asr 901-6cz-ft-a Version-
Cisco ≫ Asr 901-6cz-ft-d Version-
Cisco ≫ Me 3600x-24cx-m Version-
Cisco ≫ Me 3600x-24fs-m Version-
Cisco ≫ Me 3600x-24ts-m Version-
Cisco ≫ Me 3800x-24fs-m Version-
Cisco ≫ Asr 901-12c-ft-d Version-
Cisco ≫ Asr 901-4c-f-d Version-
Cisco ≫ Asr 901-4c-ft-d Version-
Cisco ≫ Asr 901-6cz-f-a Version-
Cisco ≫ Asr 901-6cz-f-d Version-
Cisco ≫ Asr 901-6cz-ft-a Version-
Cisco ≫ Asr 901-6cz-ft-d Version-
Cisco ≫ Me 3600x-24cx-m Version-
Cisco ≫ Me 3600x-24fs-m Version-
Cisco ≫ Me 3600x-24ts-m Version-
Cisco ≫ Me 3800x-24fs-m Version-
03.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog
Cisco IOS and XE Software Internet Key Exchange Version 1 Denial-of-Service Vulnerability
VulnerabilityA vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
DescriptionApply updates per vendor instructions.
Required actions| Type | Source | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 6.18% | 0.899 |
| Source | Base Score | Exploit Score | Impact Score | Vector string |
|---|---|---|---|---|
| nvd@nist.gov | 7.5 | 3.9 | 3.6 |
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
|
| nvd@nist.gov | 7.8 | 10 | 6.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:C
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.