← Back

CVE-2018-0257

nvd nist
Published: Apr 19, 2018Modified: Nov 21, 2024

JSON object

Loading...
4.3
Vector
CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Exploitability: 2.8 / Impact: 1.4
Source: NVD

Description

A vulnerability in Cisco IOS XE Software running on Cisco cBR Series Converged Broadband Routers could allow an unauthenticated, adjacent attacker to cause high CPU usage on an affected device, resulting in a denial of service (DoS) condition. The vulnerability is due to the incorrect handling of certain DHCP packets. An attacker could exploit this vulnerability by sending certain DHCP packets to a specific segment of an affected device. A successful exploit could allow the attacker to increase CPU usage on the affected device and cause a DoS condition. Cisco Bug IDs: CSCvg73687.

Affected (6)

Products: Cisco: Ios Xe
Cisco
1 product
Ios Xe
Configuration A
6 vulnerable
Vulnerable SoftwareAffected Versions
Cisco
Ios Xe
After 16.7 to 16.7.2
Ios Xe
From 16.6 to 16.6.3
Ios Xe
From 3.18 to 3.18.4
Ios Xe
Version 15.6(2)sp
Ios Xe
Version 16.4
Ios Xe
Version 16.5

Related CWEs

CWE-399
CWE-399

References (6)

Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Third Party AdvisoryVDB Entry
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.