Cisco IOS XE vulnerabilities

CVE-2018-0176 [HIGH] CWE-264 CVE-2018-0176: Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, lo Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerabilities are due to the affected software improperly sanitizing command arguments to prevent acce

CVE-2018-0152 [HIGH] CWE-264 CVE-2018-0152: A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an aut A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to gain elevated privileges on an affected device. The vulnerability exists because the affected software does not reset the privilege level for each web UI session. An attacker who has valid credentials for an affected device

CVE-2018-0195 [HIGH] CWE-287 CVE-2018-0195: A vulnerability in the Cisco IOS XE Software REST API could allow an authenticated, remote attacker A vulnerability in the Cisco IOS XE Software REST API could allow an authenticated, remote attacker to bypass API authorization checks and use the API to perform privileged actions on an affected device. The vulnerability is due to insufficient authorization checks for requests that are sent to the REST API of the affected software. An attacker could exp

CVE-2018-0155 [HIGH] CWE-388 CVE-2018-0155: A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Cata A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial of service (DoS) condition. The vulnerability is due to insufficient error handling

CVE-2018-0177 [HIGH] CWE-19 CVE-2018-0177: A vulnerability in the IP Version 4 (IPv4) processing code of Cisco IOS XE Software running on Cisco A vulnerability in the IP Version 4 (IPv4) processing code of Cisco IOS XE Software running on Cisco Catalyst 3850 and Cisco Catalyst 3650 Series Switches could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service (DoS) condition. The vulnerability

CVE-2018-0170 [HIGH] CWE-416 CVE-2018-0170: A vulnerability in the Cisco Umbrella Integration feature of Cisco IOS XE Software could allow an un A vulnerability in the Cisco Umbrella Integration feature of Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition, related to the OpenDNS software. The vulnerability is due to a logic error that exists when handling a malformed incoming packet, leading to access to an internal data structure

CVE-2018-0196 [MEDIUM] CWE-20 CVE-2018-0196: A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an aut A vulnerability in the web-based user interface (web UI) of Cisco IOS XE Software could allow an authenticated, remote attacker to write arbitrary files to the operating system of an affected device. The vulnerability is due to insufficient input validation of HTTP requests that are sent to the web UI of the affected software. An attacker could exploit

CVE-2018-0160 [MEDIUM] CWE-415 CVE-2018-0160: A vulnerability in Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software coul A vulnerability in Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE Software could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to improper management of memory resources, referred to as a double free. An attacker could exploit this vulnerability by sending crafted SN

CVE-2018-0188 [MEDIUM] CWE-79 CVE-2018-0188: Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could all Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. The vulnerabilities are due to insufficient input validation of certain parameters that are passed to the affecte

CVE-2018-0184 [MEDIUM] CWE-264 CVE-2018-0184: A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attac A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerability is due to the affected software improperly sanitizing command arguments to prevent access to inte

CVE-2018-0189 [MEDIUM] CWE-399 CVE-2018-0189: A vulnerability in the Forwarding Information Base (FIB) code of Cisco IOS Software and Cisco IOS XE A vulnerability in the Forwarding Information Base (FIB) code of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, network attacker to cause a denial of service (DoS) condition. The vulnerability is due to a limitation in the way the FIB is internally representing recursive routes. An attacker could exploit this vulnerabilit

CVE-2018-0186 [MEDIUM] CWE-79 CVE-2018-0186: Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could all Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. The vulnerabilities are due to insufficient input validation of certain parameters that are passed to the affecte

CVE-2018-0183 [MEDIUM] CWE-264 CVE-2018-0183: A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attac A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local attacker to gain access to the underlying Linux shell of an affected device and execute arbitrary commands with root privileges on the device. The vulnerability is due to the affected software improperly sanitizing command arguments to prevent access to inte

CVE-2018-0190 [MEDIUM] CWE-79 CVE-2018-0190: Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could all Multiple vulnerabilities in the web-based user interface (web UI) of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web UI of the affected software. The vulnerabilities are due to insufficient input validation of certain parameters that are passed to the affecte

CVE-2017-12319 [MEDIUM] CWE-20 CVE-2017-12319: A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition, or potentially corrupt the BGP routing table, which could result in network instability. The vul

CVE-2017-12272 [MEDIUM] CWE-79 CVE-2017-12272: A vulnerability in the web framework code of Cisco IOS XE Software could allow an unauthenticated, r A vulnerability in the web framework code of Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web interface of the affected software. The vulnerability is due to insufficient input validation of some parameters that are passed to the web server of the affected s

CVE-2017-12229 [CRITICAL] CWE-287 CVE-2017-12229: A vulnerability in the REST API of the web-based user interface (web UI) of Cisco IOS XE 3.1 through A vulnerability in the REST API of the web-based user interface (web UI) of Cisco IOS XE 3.1 through 16.5 could allow an unauthenticated, remote attacker to bypass authentication to the REST API of the web UI of the affected software. The vulnerability is due to insufficient input validation for the REST API of the affected software. An attacker c

CVE-2017-12236 [CRITICAL] CWE-287 CVE-2017-12236: A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3 A vulnerability in the implementation of the Locator/ID Separation Protocol (LISP) in Cisco IOS XE 3.2 through 16.5 could allow an unauthenticated, remote attacker using an x tunnel router to bypass authentication checks performed when registering an Endpoint Identifier (EID) to a Routing Locator (RLOC) in the map server/map resolver (MS/MR). The

CVE-2017-12237 [HIGH] CWE-399 CVE-2017-12237: A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS 15.0 through 15.6 A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS 15.0 through 15.6 and Cisco IOS XE 3.5 through 16.5 could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service (DoS) condition. The vulnerability is due to how an

CVE-2017-12226 [HIGH] CWE-264 CVE-2017-12226: A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wir A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E (Wireless) Switches, and Cisco New Generation Wireless Controllers (NGWC) 3850 could allow an authenticated, remote attacker to elevate their privileges on an affected device. The vulnera