CVE-2018-0173 - Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
Project:Cisco
Product:IOS and IOS XE Software
Date Added:2022-03-03Due Date:2022-03-17
Vulnerability Name
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
Description
A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores encapsulated option 82 information in DHCP Version 4 (DHCPv4) packets can allow for denial-of-service (DoS).
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0173