DEV Community

Cover image for CVE-2018-0171: Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability
Freedom Coder
Freedom Coder

Posted on • Originally published at scyscan.com

CVE-2018-0171: Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability

CVE ID

CVE-2018-0171

Vulnerability Name

Cisco IOS and IOS XE Software Smart Install Remote Code Execution Vulnerability

  • Project: Cisco
  • Product: IOS and IOS XE

Date

  • Date Added: 2021-11-03
  • Due Date: 2022-05-03

Description

Cisco IOS and IOS XE Software improperly validates packet data, allowing an unauthenticated, remote attacker to trigger a reload of an affected device, cause a denial-of-service (DoS) condition, or perform code execution on the affected device.

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2018-0171

Related Security News

More CVEs Info

Common Vulnerabilities & Exposures (CVE) List

Top comments (0)