CVE-2018-0159 - Cisco IOS and XE Software Internet Key Exchange Version 1 Denial-of-Service Vulnerability
Project:Cisco
Product:IOS Software and Cisco IOS XE Software
Date Added:2022-03-03Due Date:2022-03-17
Vulnerability Name
Cisco IOS and XE Software Internet Key Exchange Version 1 Denial-of-Service Vulnerability
Description
A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0159