CVE-2018-0157 — Cisco IOS XE vulnerability
Severity
8.6HIGHNVD
EPSS
2.7%
top 13.99%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedMar 28
Latest updateMay 13
Description
A vulnerability in the Zone-Based Firewall code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a device to reload. The vulnerability is due to the way fragmented packets are handled in the firewall code. An attacker could exploit this vulnerability by sending fragmented IP Version 4 or IP Version 6 packets through an affected device. An exploit could allow the attacker to cause the device to crash, resulting in a denial of service (DoS) condition. The following…
CVSS vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:HExploitability: 3.9 | Impact: 4.0
Affected Packages1 packages
🔴Vulnerability Details
2GHSA▶
GHSA-62mx-f8g8-6q8g: A vulnerability in the Zone-Based Firewall code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a device to reload↗2022-05-13
CVEList▶
CVE-2018-0157: A vulnerability in the Zone-Based Firewall code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a device to reload↗2018-03-28
📋Vendor Advisories
1Cisco▶
Cisco IOS XE Software Zone-Based Firewall IP Fragmentation Denial of Service Vulnerability↗2018-03-28