CVE-2018-0472

A vulnerability in the IPsec driver code of multiple Cisco IOS XE Software platforms and the Cisco ASA 5500-X Series Adaptive Security Appliance (ASA) could allow an unauthenticated, remote attacker to cause the device to reload. The vulnerability is due to improper processing of malformed IPsec Authentication Header (AH) or Encapsulating Security Payload (ESP) packets. An attacker could exploit this vulnerability by sending malformed IPsec packets to be processed by an affected device. An exploit could allow the attacker to cause a reload of the affected device.

Severity	HIGH
CVSS	8.6
CWE	CWE-20
KEV
Published	7 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-20180926-ipsec
Cisco Nexus Dashboard	cisco-sa-20180926-ipsec
Cisco Meraki MS Series Switches	cisco-sa-20180926-ipsec
Cisco MDS 9000 Family of Multilayer Switches	cisco-sa-20180926-ipsec
Cisco IOS Software	cisco-sa-20180926-ipsec
Cisco Catalyst PON Series Switches	cisco-sa-20180926-ipsec
Cisco Adaptive Security Appliance (ASA) Software	cisco-sa-20180926-ipsec
Cisco ASA 5500-X Series Firewalls	cisco-sa-20180926-ipsec
Cisco Secure Firewall Adaptive Security Appliance (ASA) Software	cisco-sa-20180926-ipsec
Cisco IOS XE Software	cisco-sa-20180926-ipsec
Cisco IOS	cisco-sa-20180926-ipsec
Cisco ASA with FirePOWER Services	cisco-sa-20180926-ipsec
Cisco Catalyst 9600 Series Switches	cisco-sa-20180926-ipsec
Cisco Catalyst 9500 Series Switches	cisco-sa-20180926-ipsec
Cisco Catalyst 9400 Series Switches	cisco-sa-20180926-ipsec
Cisco Catalyst 9300 Series Switches	cisco-sa-20180926-ipsec
Cisco Catalyst 9200 Series Switches	cisco-sa-20180926-ipsec