CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0159

A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to improper validation of specific IKEv1 packets. An attacker could exploit this vulnerability by sending crafted IKEv1 packets to an affected device during an IKE negotiation. A successful exploit could allow the attacker to cause an affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCuj73916.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.062

EPSS Ranking 90.3%

CVSS Severity

CVSS v3 Score 7.5

CVSS v2 Score 7.8

Proposed Action

Ransomware Campaign

Unknown

References

Products affected by CVE-2018-0159

Cisco » Asr 901-12c-F-D » Version: N/A

cpe:2.3:h:cisco:asr_901-12c-f-d:-
Cisco » Asr 901-12c-Ft-D » Version: N/A

cpe:2.3:h:cisco:asr_901-12c-ft-d:-
Cisco » Asr 901-4c-F-D » Version: N/A

cpe:2.3:h:cisco:asr_901-4c-f-d:-
Cisco » Asr 901-4c-Ft-D » Version: N/A

cpe:2.3:h:cisco:asr_901-4c-ft-d:-
Cisco » Asr 901-6cz-F-A » Version: N/A

cpe:2.3:h:cisco:asr_901-6cz-f-a:-
Cisco » Asr 901-6cz-F-D » Version: N/A

cpe:2.3:h:cisco:asr_901-6cz-f-d:-
Cisco » Asr 901-6cz-Ft-A » Version: N/A

cpe:2.3:h:cisco:asr_901-6cz-ft-a:-
Cisco » Asr 901-6cz-Ft-D » Version: N/A

cpe:2.3:h:cisco:asr_901-6cz-ft-d:-
Cisco » Me 3600x-24cx-M » Version: N/A

cpe:2.3:h:cisco:me_3600x-24cx-m:-
Cisco » Me 3600x-24fs-M » Version: N/A

cpe:2.3:h:cisco:me_3600x-24fs-m:-
Cisco » Me 3600x-24ts-M » Version: N/A

cpe:2.3:h:cisco:me_3600x-24ts-m:-
Cisco » Me 3800x-24fs-M » Version: N/A

cpe:2.3:h:cisco:me_3800x-24fs-m:-
Cisco » Ios » Version: 15.3(3)s

cpe:2.3:o:cisco:ios:15.3(3)s
Cisco » Ios Xe » Version: 15.3(3)s

cpe:2.3:o:cisco:ios_xe:15.3(3)s

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2018-0159

Products

Pricing

Contact Us