Cisco Confirms Salt Typhoon Exploited CVE-2018-0171 to Target U.S. Telecom Networks

Cisco has confirmed that a Chinese threat actor known as Salt Typhoon gained access by likely abusing a known security flaw tracked as CVE-2018-0171, and by obtaining legitimate victim login credentials as part of a targeted campaign aimed at major U.S. telecommunications companies. "The threat...

Exploit for Improper Input Validation in Cisco Ios

Cisco-Smart-Exploit Cisco SmartInstall Exploit CVE-2018-0171...

Here's how hackers are targeting Cisco Network Switches in Russia and Iran

Since last week, a new hacking group, calling itself 'JHT,' hijacked a significant number of Cisco devices belonging to organizations in Russia and Iran, and left a message that reads—"Do not mess with our elections" with an American flag in ASCII art. MJ Azari Jahromi, Iranian Communication and...

Cisco product experience serious vulnerability, resulting in a large number of devices is facing a remote risk of attack-vulnerability warning-the black bar safety net

! Cisco in their IOS software that patches over 30 vulnerabilities, including a serious remote code execution vulnerability, the vulnerability can be hundreds of thousands of even millions of devices exposed on the network device initiates a remote attack. A total of three vulnerabilities are rat...

Cisco Smart Install Remote Code Execution (CVE-2018-0171)

A remote code execution vulnerability exists in Cisco Smart Install. Successful exploitation of this vulnerability could allow a remote attacker to execute arbitrary code on the affected system...

CVE-2018-0171

creationtimestamp| type| source ---|---|--- 2018-03-29 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=276 2018-03-30 12:01:10+00:00| seen| https://t.me/informationsecuritychannel/15590 2018-04-05 18:51:00+00:00| published-proof-of-concept|...

Cisco IOS XE Software Smart Install Remote Code Execution Vulnerability

According to its self-reported version, the IOS XE is affected by one or more vulnerabilities. Please see the included Cisco BIDs and the Cisco Security Advisory for more information. TRUSTED...

CVE-2018-0171

CVE-2018-0171 is a Cisco Smart Install remote code execution vulnerability in Cisco IOS/IOS XE where improper validation of packet data allows an unauthenticated, remote attacker to trigger a device reload (DoS) or execute arbitrary code by sending a crafted Smart Install message to TCP port 4786...

CVE-2018-0171

A vulnerability in the Smart Install feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to trigger a reload of an affected device, resulting in a denial of service DoS condition, or to execute arbitrary code on an affected device. The...