Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20180926-IPSEC
HistorySep 26, 2018 - 4:00 p.m.

Cisco IOS XE Software and Cisco ASA 5500-X Series Adaptive Security Appliance IPsec Denial of Service Vulnerability

2018-09-2616:00:00
tools.cisco.com
31

0.007 Low

EPSS

Percentile

80.4%

JSON

A vulnerability in the IPsec driver code of multiple Cisco IOS XE Software platforms and the Cisco ASA 5500-X Series Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause the device to reload.

The vulnerability is due to improper processing of malformed IPsec Authentication Header (AH) or Encapsulating Security Payload (ESP) packets. An attacker could exploit this vulnerability by sending malformed IPsec packets to be processed by an affected device. An exploit could allow the attacker to cause a reload of the affected device.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ipsec [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180926-ipsec”]
This advisory is part of the September 26, 2018, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 12 Cisco Security Advisories that describe 13 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: September 2018 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-69981”].

Affected configurations

Vulners
Node
ciscoadaptive_security_virtual_applianceMatch9.3
OR
ciscoadaptive_security_virtual_applianceMatch9.4
OR
ciscoadaptive_security_virtual_applianceMatch9.5
OR
ciscoadaptive_security_virtual_applianceMatch9.6
OR
ciscoadaptive_security_virtual_applianceMatch9.7
OR
ciscoadaptive_security_virtual_applianceMatch9.8
OR
ciscoadaptive_security_virtual_applianceMatch9.9
OR
ciscorvs4000_softwareMatch3.7s
OR
ciscorvs4000_softwareMatch3.8s
OR
ciscorvs4000_softwareMatch3.9s
OR
ciscorvs4000_softwareMatch3.10s
OR
ciscorvs4000_softwareMatch3.11s
OR
ciscorvs4000_softwareMatch3.12s
OR
ciscorvs4000_softwareMatch3.13s
OR
ciscorvs4000_softwareMatch3.14s
OR
ciscorvs4000_softwareMatch3.15s
OR
ciscorvs4000_softwareMatch3.16s
OR
ciscorvs4000_softwareMatch3.17s
OR
ciscorvs4000_softwareMatch16.1
OR
ciscorvs4000_softwareMatch16.2
OR
ciscorvs4000_softwareMatch16.3
OR
ciscorvs4000_softwareMatch16.4
OR
ciscorvs4000_softwareMatch16.5
OR
ciscorvs4000_softwareMatch16.6
OR
ciscorvs4000_softwareMatch16.7
OR
ciscorvs4000_softwareMatch16.8
OR
ciscorvs4000_softwareMatch16.9
OR
ciscorvs4000_softwareMatch17.2
OR
ciscoasa_with_firepower_servicesMatchany
OR
ciscoadaptive_security_virtual_applianceMatch9.3.1
OR
ciscoadaptive_security_virtual_applianceMatch9.3.1.1
OR
ciscoadaptive_security_virtual_applianceMatch9.3.2
OR
ciscoadaptive_security_virtual_applianceMatch9.3.2.2
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3
OR
ciscoadaptive_security_virtual_applianceMatch9.3.5
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.1
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.2
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.5
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.6
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.9
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.10
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.11
OR
ciscoadaptive_security_virtual_applianceMatch9.3.3.7
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1
OR
ciscoadaptive_security_virtual_applianceMatch9.4.0.115
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.1
OR
ciscoadaptive_security_virtual_applianceMatch9.4.2
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.5
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.3
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.2
OR
ciscoadaptive_security_virtual_applianceMatch9.4.2.3
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3.3
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3.4
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3.6
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3.8
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3.11
OR
ciscoadaptive_security_virtual_applianceMatch9.4.3.12
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.2
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.5
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.6
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.8
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.10
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.12
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.13
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.14
OR
ciscoadaptive_security_virtual_applianceMatch9.4.2.6
OR
ciscoadaptive_security_virtual_applianceMatch9.4.2.11
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.16
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.13
OR
ciscoadaptive_security_virtual_applianceMatch9.4.4.17
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.7
OR
ciscoadaptive_security_virtual_applianceMatch9.4.1.8
OR
ciscoadaptive_security_virtual_applianceMatch9.5.1
OR
ciscoadaptive_security_virtual_applianceMatch9.5.2
OR
ciscoadaptive_security_virtual_applianceMatch9.5.2.6
OR
ciscoadaptive_security_virtual_applianceMatch9.5.2.10
OR
ciscoadaptive_security_virtual_applianceMatch9.5.2.14
OR
ciscoadaptive_security_virtual_applianceMatch9.5.3
OR
ciscoadaptive_security_virtual_applianceMatch9.5.3.2
OR
ciscoadaptive_security_virtual_applianceMatch9.5.3.3
OR
ciscoadaptive_security_virtual_applianceMatch9.5.3.1
OR
ciscoadaptive_security_virtual_applianceMatch9.5.3.6
OR
ciscoadaptive_security_virtual_applianceMatch9.5.3.9
OR
ciscoadaptive_security_virtual_applianceMatch9.5.2.5
OR
ciscoadaptive_security_virtual_applianceMatch9.5.2.2
OR
ciscoadaptive_security_virtual_applianceMatch9.5.1.4
OR
ciscoadaptive_security_virtual_applianceMatch9.6.0
OR
ciscoadaptive_security_virtual_applianceMatch9.6.1
OR
ciscoadaptive_security_virtual_applianceMatch9.6.1.3
OR
ciscoadaptive_security_virtual_applianceMatch9.6.1.5
OR
ciscoadaptive_security_virtual_applianceMatch9.6.1.10
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.1
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.2
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.3
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.7
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.8
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.9
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.1
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.11
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.3
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.8
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.9
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.11
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.12
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.14
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.17
OR
ciscoadaptive_security_virtual_applianceMatch9.63.20
OR
ciscoadaptive_security_virtual_applianceMatch9.62.22
OR
ciscoadaptive_security_virtual_applianceMatch9.62.23
OR
ciscoadaptive_security_virtual_applianceMatch9.6.4.3
OR
ciscoadaptive_security_virtual_applianceMatch9.6.3.20
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.22
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.23
OR
ciscoadaptive_security_virtual_applianceMatch9.6.4
OR
ciscoadaptive_security_virtual_applianceMatch9.6.2.13
OR
ciscoadaptive_security_virtual_applianceMatch9.6.4.5
OR
ciscoadaptive_security_virtual_applianceMatch9.6.4.6
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.1
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.2
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.4
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.8
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.15
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.16
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.19
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.20
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.21
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.23
OR
ciscoadaptive_security_virtual_applianceMatch9.7.1.24
OR
ciscoadaptive_security_virtual_applianceMatch9.8.1
OR
ciscoadaptive_security_virtual_applianceMatch9.8.1.5
OR
ciscoadaptive_security_virtual_applianceMatch9.8.1.7
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.8
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.10
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.11
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.14
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.15
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.17
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.18
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.19
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.20
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.3
OR
ciscoadaptive_security_virtual_applianceMatch9.8.2.24
OR
ciscoadaptive_security_virtual_applianceMatchany
OR
ciscoadaptive_security_virtual_applianceMatch9.9.1
OR
ciscoadaptive_security_virtual_applianceMatch9.9.1.2
OR
ciscoadaptive_security_virtual_applianceMatch9.9.1.3
OR
ciscoadaptive_security_virtual_applianceMatch9.9.2
OR
ciscoadaptive_security_virtual_applianceMatch9.9.2.1
OR
ciscoadaptive_security_virtual_applianceMatch9.9.1.4
OR
ciscorvs4000_softwareMatch3.7.0s
OR
ciscorvs4000_softwareMatch3.7.1s
OR
ciscorvs4000_softwareMatch3.7.2s
OR
ciscorvs4000_softwareMatch3.7.3s
OR
ciscorvs4000_softwareMatch3.7.4s
OR
ciscorvs4000_softwareMatch3.7.5s
OR
ciscorvs4000_softwareMatch3.7.6s
OR
ciscorvs4000_softwareMatch3.7.7s
OR
ciscorvs4000_softwareMatch3.7.8s
OR
ciscorvs4000_softwareMatch3.7.4as
OR
ciscorvs4000_softwareMatch3.7.2ts
OR
ciscorvs4000_softwareMatch3.7.0bs
OR
ciscorvs4000_softwareMatch3.8.0s
OR
ciscorvs4000_softwareMatch3.8.1s
OR
ciscorvs4000_softwareMatch3.8.2s
OR
ciscorvs4000_softwareMatch3.9.1s
OR
ciscorvs4000_softwareMatch3.9.0s
OR
ciscorvs4000_softwareMatch3.9.2s
OR
ciscorvs4000_softwareMatch3.9.1as
OR
ciscorvs4000_softwareMatch3.9.0as
OR
ciscorvs4000_softwareMatch3.10.0s
OR
ciscorvs4000_softwareMatch3.10.1s
OR
ciscorvs4000_softwareMatch3.10.2s
OR
ciscorvs4000_softwareMatch3.10.3s
OR
ciscorvs4000_softwareMatch3.10.4s
OR
ciscorvs4000_softwareMatch3.10.5s
OR
ciscorvs4000_softwareMatch3.10.6s
OR
ciscorvs4000_softwareMatch3.10.2as
OR
ciscorvs4000_softwareMatch3.10.2ts
OR
ciscorvs4000_softwareMatch3.10.7s
OR
ciscorvs4000_softwareMatch3.10.8s
OR
ciscorvs4000_softwareMatch3.10.8as
OR
ciscorvs4000_softwareMatch3.10.9s
OR
ciscorvs4000_softwareMatch3.10.10s
OR
ciscorvs4000_softwareMatch3.11.1s
OR
ciscorvs4000_softwareMatch3.11.2s
OR
ciscorvs4000_softwareMatch3.11.0s
OR
ciscorvs4000_softwareMatch3.11.3s
OR
ciscorvs4000_softwareMatch3.11.4s
OR
ciscorvs4000_softwareMatch3.12.0s
OR
ciscorvs4000_softwareMatch3.12.1s
OR
ciscorvs4000_softwareMatch3.12.2s
OR
ciscorvs4000_softwareMatch3.12.3s
OR
ciscorvs4000_softwareMatch3.12.0as
OR
ciscorvs4000_softwareMatch3.12.4s
OR
ciscorvs4000_softwareMatch3.13.0s
OR
ciscorvs4000_softwareMatch3.13.1s
OR
ciscorvs4000_softwareMatch3.13.2s
OR
ciscorvs4000_softwareMatch3.13.3s
OR
ciscorvs4000_softwareMatch3.13.4s
OR
ciscorvs4000_softwareMatch3.13.5s
OR
ciscorvs4000_softwareMatch3.13.2as
OR
ciscorvs4000_softwareMatch3.13.5as
OR
ciscorvs4000_softwareMatch3.13.6s
OR
ciscorvs4000_softwareMatch3.13.7s
OR
ciscorvs4000_softwareMatch3.13.6as
OR
ciscorvs4000_softwareMatch3.13.6bs
OR
ciscorvs4000_softwareMatch3.13.7as
OR
ciscorvs4000_softwareMatch3.13.8s
OR
ciscorvs4000_softwareMatch3.13.9s
OR
ciscorvs4000_softwareMatch3.14.0s
OR
ciscorvs4000_softwareMatch3.14.1s
OR
ciscorvs4000_softwareMatch3.14.2s
OR
ciscorvs4000_softwareMatch3.14.3s
OR
ciscorvs4000_softwareMatch3.14.4s
OR
ciscorvs4000_softwareMatch3.15.0s
OR
ciscorvs4000_softwareMatch3.15.1s
OR
ciscorvs4000_softwareMatch3.15.2s
OR
ciscorvs4000_softwareMatch3.15.1cs
OR
ciscorvs4000_softwareMatch3.15.3s
OR
ciscorvs4000_softwareMatch3.15.4s
OR
ciscorvs4000_softwareMatch3.16.0s
OR
ciscorvs4000_softwareMatch3.16.1as
OR
ciscorvs4000_softwareMatch3.16.2s
OR
ciscorvs4000_softwareMatch3.16.0cs
OR
ciscorvs4000_softwareMatch3.16.3s
OR
ciscorvs4000_softwareMatch3.16.2bs
OR
ciscorvs4000_softwareMatch3.16.4as
OR
ciscorvs4000_softwareMatch3.16.4bs
OR
ciscorvs4000_softwareMatch3.16.4gs
OR
ciscorvs4000_softwareMatch3.16.5s
OR
ciscorvs4000_softwareMatch3.16.4cs
OR
ciscorvs4000_softwareMatch3.16.4ds
OR
ciscorvs4000_softwareMatch3.16.4es
OR
ciscorvs4000_softwareMatch3.16.6s
OR
ciscorvs4000_softwareMatch3.16.5as
OR
ciscorvs4000_softwareMatch3.16.5bs
OR
ciscorvs4000_softwareMatch3.16.7s
OR
ciscorvs4000_softwareMatch3.16.6bs
OR
ciscorvs4000_softwareMatch3.16.7as
OR
ciscorvs4000_softwareMatch3.16.7bs
OR
ciscorvs4000_softwareMatch3.17.0s
OR
ciscorvs4000_softwareMatch3.17.1s
OR
ciscorvs4000_softwareMatch3.17.2s
OR
ciscorvs4000_softwareMatch3.17.1as
OR
ciscorvs4000_softwareMatch3.17.3s
OR
ciscorvs4000_softwareMatch3.17.4s
OR
ciscorvs4000_softwareMatch16.1.1
OR
ciscorvs4000_softwareMatch16.1.2
OR
ciscorvs4000_softwareMatch16.1.3
OR
ciscorvs4000_softwareMatch16.2.1
OR
ciscorvs4000_softwareMatch16.2.2
OR
ciscorvs4000_softwareMatch16.3.1
OR
ciscorvs4000_softwareMatch16.3.2
OR
ciscorvs4000_softwareMatch16.3.3
OR
ciscorvs4000_softwareMatch16.3.1a
OR
ciscorvs4000_softwareMatch16.3.4
OR
ciscorvs4000_softwareMatch16.3.5
OR
ciscorvs4000_softwareMatch16.3.5b
OR
ciscorvs4000_softwareMatch16.3.6
OR
ciscorvs4000_softwareMatch16.4.1
OR
ciscorvs4000_softwareMatch16.4.2
OR
ciscorvs4000_softwareMatch16.4.3
OR
ciscorvs4000_softwareMatch16.5.1
OR
ciscorvs4000_softwareMatch16.5.1a
OR
ciscorvs4000_softwareMatch16.5.1b
OR
ciscorvs4000_softwareMatch16.5.2
OR
ciscorvs4000_softwareMatch16.5.3
OR
ciscorvs4000_softwareMatch16.6.1
OR
ciscorvs4000_softwareMatch16.6.2
OR
ciscorvs4000_softwareMatch16.6.3
OR
ciscorvs4000_softwareMatch16.7.1
OR
ciscorvs4000_softwareMatch16.7.1a
OR
ciscorvs4000_softwareMatch16.7.1b
OR
ciscorvs4000_softwareMatch16.8.1
OR
ciscorvs4000_softwareMatch16.8.1s
OR
ciscorvs4000_softwareMatch16.9.1b
OR
ciscorvs4000_softwareMatch17.2.1v
OR
ciscoasa_with_firepower_servicesMatchany

Related

nvd 1
cve 1
nessus 1
prion 1
cvelist 1
ics 1
nvd
nvd
CVE-2018-0472
2018-10-05 14:29:05
cve
cve
CVE-2018-0472
2018-10-05 14:29:05
nessus
nessus
Cisco IOS XE Software IPsec DoS Vulnerability (cisco-sa-20180926-ipsec)
2018-10-05 00:00:00
prion
prion
Design/Logic Flaw
2018-10-05 14:29:00
cvelist
cvelist
CVE-2018-0472 Cisco IOS XE Software and Cisco ASA 5500-X Series Adaptive Security Appliance IPsec Denial of Service Vulnerability
2018-09-26 00:00:00
ics
ics
Rockwell Automation Stratix 5950
2019-04-05 12:00:00

0.007 Low

EPSS

Percentile

80.4%

JSON
Related for CISCO-SA-20180926-IPSEC
nvd1cve1nessus1prion1cvelist1ics1