CVE-2018-0173
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
CVSS
—
No CVSS
EPSS
7.8%
p94
KEV
YES
Mar 3, 2022
Exploit Today
78
0-100
Published: — · Last modified: —
7.6%EPSS · 30 days7.8%
2026-06-302026-07-16
Product
Cisco / IOS and IOS XE Software
Vulnerability
Cisco IOS and IOS XE Software Improper Input Validation Vulnerability
Added to KEV
Mar 3, 2022
Remediate by
Mar 17, 2022
Known ransomware use
No
Summary description
A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores encapsulated option 82 information in DHCP Version 4 (DHCPv4) packets can allow for denial-of-service (DoS).
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2018-0173
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2017-6736—99.3%
KEV—80Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—CVE-2017-6737—98.6%
KEV—80Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—CVE-2017-6742—97.3%
KEV—79Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—CVE-2018-0151—96.2%
KEV—79Cisco IOS Software and Cisco IOS XE Software Quality of Service Remote Code Execution Vulnerability—CVE-2017-12240—96.1%
KEV—79Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability—CVE-2017-6740—95.3%
KEV—79Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability—