CVE-2018-0182
Cisco IOS XE Software CLI Command Injection vulnerabilities (CVE-2018-0182) arise from insufficient sanitization of CLI arguments before passing them to the Linux shell. An authenticated, local attacker can exploit this via the CLI to gain access to the underlying Linux shell with root privileges...