2 matches found
CVE-2018-0131
A vulnerability in the implementation of RSA-encrypted nonces in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to obtain the encrypted nonces of an Internet Key Exchange Version 1 IKEv1 session. The vulnerability exists because the affected software...
CVE-2018-0131
The vulnerability CVE-2018-0131 affects Cisco IOS and IOS XE when RSA-encrypted nonces are used in IKEv1. The root cause is that the software responds incorrectly to decryption failures, allowing an unauthenticated remote attacker to send crafted ciphertexts and obtain the encrypted nonces from a...