vulnerability

Cisco IOS-XR: CVE-2018-0167: Cisco IOS, IOS XE, and IOS XR Software Link Layer Discovery Protocol Buffer Overflow Vulnerabilities

Try Surface Command

Back to search

Severity

CVSS

(AV:A/AC:L/Au:N/C:C/I:C/A:C)

Published

Mar 28, 2018

Added

May 19, 2021

Modified

Jul 28, 2025

Description

Multiple Buffer Overflow vulnerabilities in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code with elevated privileges on an affected device. Cisco Bug IDs: CSCuo17183, CSCvd73487.

Solution

update-xros

References

BID-103564
CVE-2018-0167
https://attackerkb.com/topics/CVE-2018-0167
CVE-2018-0175
https://attackerkb.com/topics/CVE-2018-0175
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-lldp

Rapid7 Labs

2026 Global Threat Landscape Report

The predictive window has collapsed. Exploitation follows disclosure in days. See how attackers are accelerating and how to stay ahead.

Get report