The vulnerability of Cisco IOS and Cisco IOS XE operating systems, related to incorrect packet validation, allows attackers to trigger service failures or execute arbitrary code.

🗓️ 06 Apr 2018 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

Cisco Internetworking Operating System flaws allow disruption or code execution via Smart Install on port four seven eight six.

Reporter	Title	Published	Views	Family All 38
GithubExploit	Exploit for Improper Input Validation in Cisco Ios	1 Feb 202303:51	–	githubexploit
ICS	2021 Top Routinely Exploited Vulnerabilities	28 Apr 202212:00	–	ics
ICS	People’s Republic of China State-Sponsored Cyber Actors Exploit Network Providers and Devices	10 Jun 202212:00	–	ics
ICS	Rockwell Automation Stratix and ArmorStratix Switches	17 Apr 201800:00	–	ics
ICS	ICSA-18-107-05_Rockwell Automation Stratix Industrial Managed Ethernet Switch	17 Apr 201800:00	–	ics
ATTACKERKB	CVE-2018-0171	28 Mar 201800:00	–	attackerkb
Information Security Automation	Is Vulnerability Management more about Vulnerabilities or Management?	11 Feb 202013:46	–	avleonov
Circl	CVE-2018-0171	29 Mar 201804:00	–	circl
CISA KEV Catalog	Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability	3 Nov 202100:00	–	cisa_kev
Cisco	Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability	28 Mar 201816:00	–	cisco

Vulners

Node

cisco_systems cisco_ios_xeMatch16.5.1

cisco_systems cisco_ios_xeMatch3.6.5be

cisco_systems cisco_ios_xeMatch16.1.1

cisco_systems cisco_ios_xeMatch16.1.2

cisco_systems cisco_ios_xeMatch16.1.3

cisco_systems cisco_ios_xeMatch3.2.0ja

cisco_systems cisco_ios_xeMatch16.3.1a

cisco_systems cisco_ios_xeMatch16.5.1a

cisco_systems cisco_ios_xeMatch16.2.1

cisco_systems cisco_ios_xeMatch3.7.0e

cisco_systems cisco_ios_xeMatch3.7.1e

cisco_systems cisco_ios_xeMatch3.7.2e

cisco_systems cisco_ios_xeMatch3.7.4e

cisco_systems cisco_ios_xeMatch3.7.5e

cisco_systems cisco_ios_xeMatch3.7.3e

cisco_systems cisco_ios_xeMatch16.2.2

cisco_systems cisco_ios_xeMatch16.3.1

cisco_systems cisco_ios_xeMatch16.3.2

cisco_systems cisco_ios_xeMatch16.3.3

cisco_systems cisco_ios_xeMatch16.3.4

cisco_systems cisco_ios_xeMatch16.3.5

cisco_systems cisco_ios_xeMatch16.3.5b

cisco_systems cisco_ios_xeMatch16.4.1

cisco_systems cisco_ios_xeMatch16.6.1

cisco_systems cisco_ios_xeMatch16.6.4

cisco_systems cisco_ios_xeMatch3.2.0se

cisco_systems cisco_ios_xeMatch3.2.1se

cisco_systems cisco_ios_xeMatch3.2.2se

cisco_systems cisco_ios_xeMatch3.2.3se

cisco_systems cisco_ios_xeMatch3.3.0se

cisco_systems cisco_ios_xeMatch3.3.1se

cisco_systems cisco_ios_xeMatch3.3.2se

cisco_systems cisco_ios_xeMatch3.3.3se

cisco_systems cisco_ios_xeMatch3.3.4se

cisco_systems cisco_ios_xeMatch3.3.5se

cisco_systems cisco_ios_xeMatch3.3.0xo

cisco_systems cisco_ios_xeMatch3.3.1xo

cisco_systems cisco_ios_xeMatch3.3.2xo

cisco_systems cisco_ios_xeMatch3.4.0sg

cisco_systems cisco_ios_xeMatch3.4.2sg

cisco_systems cisco_ios_xeMatch3.4.1sg

cisco_systems cisco_ios_xeMatch3.4.3sg

cisco_systems cisco_ios_xeMatch3.4.4sg

cisco_systems cisco_ios_xeMatch3.4.5sg

cisco_systems cisco_ios_xeMatch3.4.6sg

cisco_systems cisco_ios_xeMatch3.4.7sg

cisco_systems cisco_ios_xeMatch3.4.8sg

cisco_systems cisco_ios_xeMatch3.5.0e

cisco_systems cisco_ios_xeMatch3.5.1e

cisco_systems cisco_ios_xeMatch3.5.2e

cisco_systems cisco_ios_xeMatch3.5.3e

cisco_systems cisco_ios_xeMatch3.6.0e

cisco_systems cisco_ios_xeMatch3.6.1e

cisco_systems cisco_ios_xeMatch3.6.2ae

cisco_systems cisco_ios_xeMatch3.6.2e

cisco_systems cisco_ios_xeMatch3.6.3e

cisco_systems cisco_ios_xeMatch3.6.4e

cisco_systems cisco_ios_xeMatch3.6.5e

cisco_systems cisco_ios_xeMatch3.6.6e

cisco_systems cisco_ios_xeMatch3.6.5ae

cisco_systems cisco_ios_xeMatch3.6.7e

cisco_systems cisco_ios_xeMatch3.6.7be

cisco_systems cisco_ios_xeMatch3.8.0e

cisco_systems cisco_ios_xeMatch3.8.1e

cisco_systems cisco_ios_xeMatch3.8.2e

cisco_systems cisco_ios_xeMatch3.8.3e

cisco_systems cisco_ios_xeMatch3.8.4e

cisco_systems cisco_ios_xeMatch3.8.5e

cisco_systems cisco_ios_xeMatch3.8.5ae

cisco_systems cisco_ios_xeMatch3.9.0e

cisco_systems cisco_ios_xeMatch3.9.1e

cisco_systems cisco_ios_xeMatch3.9.2e

cisco_systems cisco_ios_xeMatch3.10.0e

cisco_systems cisco_ios_xeMatch3.10.0ce

cisco_systems cisco_ios_xeMatch3.3.0sg

cisco_systems cisco_ios_xeMatch3.3.2sg

cisco_systems cisco_ios_xeMatch3.3.1sg

Source	Link
proffy	www.proffy.info/modules.php
threatpost	www.threatpost.ru/cisco-patches-two-critical-rce-bugs-in-ios-xe-software/25363/
cisa	www.cisa.gov/sites/default/files/csv/known_exploited_vulnerabilities.csv
web	www.web.nvd.nist.gov/view/vuln/detail

24 Sep 2024 00:00Current

8.2High risk

Vulners AI Score8.2

CVSS 210

EPSS0.92901