CVE-2018-0158 - Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability
Project:Cisco
Product:IOS Software and Cisco IOS XE Software
Date Added:2022-03-03Due Date:2022-03-17
Vulnerability Name
Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability
Description
A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0158