CVE-2018-0172
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
8.0%
p94
KEV
YES
Mar 3, 2022
Exploit Today
78
0-100
Published: — · Last modified: —
7.8%EPSS · 30 days8.0%
2026-06-302026-07-16
Product
Cisco / IOS and IOS XE Software
Vulnerability
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 17, 2022
Known ransomware use
No
Summary description
A vulnerability in the DHCP option 82 encapsulation functionality of Cisco IOS Software and Cisco IOS XE Software could allow for denial-of-service (DoS).
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0172
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2017-6736—99.3%
KEV—80Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—CVE-2017-6737—98.6%
KEV—80Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—CVE-2017-6742—97.3%
KEV—79Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—CVE-2018-0151—96.2%
KEV—79Cisco IOS Software and Cisco IOS XE Software Quality of Service Remote Code Execution Vulnerability—CVE-2017-12240—96.1%
KEV—79Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability—CVE-2017-6740—95.3%
KEV—79Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—