CVE-2018-0167
CVE-2018-0167
Vexday Risk Score
51Attention
SSVC decision (CISA)
Act
Exploitation + impact → act immediately
CVSS 8.8EPSS 3.4%KEV simPoC —Nuclei —Metasploit —Patch —
Lifecycle
28 Mar 2018Published on NVD
03 Mar 2022Active exploitation (CISA KEV)
Recommendation: Patch as soon as possible — active exploitation confirmed.
In short
A flaw in Cisco's network discovery system allows attackers on the same network to crash devices or take control of them without needing a password. The problem is caused by improper handling of data that exceeds expected limits.
Technical detail
Multiple buffer overflow vulnerabilities in the LLDP subsystem allow an unauthenticated, adjacent network attacker to trigger denial of service or arbitrary code execution with elevated privileges. The vulnerability requires network proximity but no authentication, exploiting improper input validation in protocol message handling.
Summary generated and translated by AI from the official description.
Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. Cisco Bug IDs: CSCuo17183, CSCvd73487.
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
n/a · Cisco IOS, IOS XE, and IOS XRWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-03https://ics-cert.us-cert.gov/advisories/ICSA-18-107-04https://ics-cert.us-cert.gov/advisories/ICSA-18-107-05https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-lldphttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2018-0167http://www.securityfocus.com/bid/103564http://www.securitytracker.com/id/1040586