CVE-2018-0158
Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability
CVSS
—
No CVSS
EPSS
7.3%
p94
KEV
YES
Mar 3, 2022
Exploit Today
78
0-100
Published: — · Last modified: —
Product
Cisco / IOS Software and Cisco IOS XE Software
Vulnerability
Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 17, 2022
Known ransomware use
No
Summary description
A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0158