Lucene search

CVE-2018-0173

🗓️ 28 Mar 2018 22:01:29Reported by [email protected]Type

A vulnerability in Cisco IOS & XE Software allows unauthenticated remote attacker to cause DoS by sending crafted DHCPv4 packet

Reporter	Title	Published	Views	Family All 19
Cvelist	CVE-2018-0173	28 Mar 201822:00	–	cvelist
CISA KEV Catalog	Cisco IOS and IOS XE Software Improper Input Validation Vulnerability	3 Mar 202200:00	–	cisa_kev
CVE	CVE-2018-0173	28 Mar 201822:29	–	cve
Cisco	Cisco IOS and IOS XE Software DHCP Version 4 Relay Reply Denial of Service Vulnerability	28 Mar 201816:00	–	cisco
Tenable Nessus	Cisco Ios Improper Input Validation	8 Nov 201900:00	–	nessus
Tenable Nessus	Cisco IOS DHCP Multiple Vulnerabilities	17 Apr 201800:00	–	nessus
Tenable Nessus	Cisco IOS DHCP Multiple Vulnerabilities	17 Apr 201800:00	–	nessus
Tenable Nessus	Rockwell Automation Stratix Industrial Managed Ethernet Switch 7Pk Errors (CVE-2018-0155)	15 Nov 202300:00	–	nessus
Tenable Nessus	Rockwell Automation Stratix and ArmorStratix Switches Improper Input Validation (CVE-2018-0172)	15 Nov 202300:00	–	nessus
Tenable Nessus	Rockwell Automation Stratix and ArmorStratix Switches Improper Restriction of Operations Within the Bounds of a Memory Buffer (CVE-2018-0167)	15 Nov 202300:00	–	nessus

Nvd

Node

cisco iosMatchdenali-16.3.4

cisco ios_xeMatchdenali-16.3.4

AND

cisco 4321_integrated_services_routerMatch-

cisco 4331_integrated_services_routerMatch-

cisco 4351_integrated_services_routerMatch-

cisco 4431_integrated_services_routerMatch-

cisco 4451-x_integrated_services_routerMatch-

cisco asr_1000_series_route_processor_\(rp2\)Match-

cisco asr_1000_series_route_processor_\(rp3\)Match-

cisco asr_1001-hxMatch-

cisco asr_1001-xMatch-

cisco asr_1002-hxMatch-

cisco asr_1002-xMatch-

cisco cloud_services_router_1000vMatch-

Node

cisco iosRange≤15.2\(6\)e0a

cisco ios_xeRange≤15.2\(6\)e0a

AND

rockwellautomation allen-bradley_armorstratix_5700Match-

rockwellautomation allen-bradley_stratix_5400Match-

rockwellautomation allen-bradley_stratix_5410Match-

rockwellautomation allen-bradley_stratix_5700Match-

rockwellautomation allen-bradley_stratix_8000Match-

Node

cisco iosRange≤15.2\(4a\)ea5

cisco ios_xeRange≤15.2\(4a\)ea5

AND

rockwellautomation allen-bradley_stratix_8300Match-

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-dhcpr2
securitytracker	www.securitytracker.com/id/1040591
securityfocus	www.securityfocus.com/bid/103545
tenable	www.tenable.com/security/research/tra-2018-06
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-107-04
ics-cert	www.ics-cert.us-cert.gov/advisories/ICSA-18-107-05

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

28 Mar 2018 22:29Current

8.9High risk

Vulners AI Score8.9

CVSS27.8

CVSS38.6

EPSS0.12366

CWE-20

cisco ios cisco ios xe vulnerability dhcpv4 remote attacker denial of service dos input validation cisco bug ids