vulnerability

Cisco IOS: CVE-2018-0175: Cisco IOS, IOS XE, and IOS XR Software Link Layer Discovery Protocol Buffer Overflow Vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:A/AC:M/Au:N/C:C/I:C/A:C)

Published

Mar 28, 2018

Added

Mar 29, 2018

Modified

Jan 5, 2024

Description

Format String vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. Cisco Bug IDs: CSCvd73664.

Solution

cisco-ios-upgrade-latest

References

BID-103564
CVE-2018-0175
https://attackerkb.com/topics/CVE-2018-0175
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-lldp

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report