CVE-2018-0154

7.5

HIGH

Cisco IOS Software Integrated Services Module for - [Actively Exploited]

Description

A vulnerability in the crypto engine of the Cisco Integrated Services Module for VPN (ISM-VPN) running Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient handling of VPN traffic by the affected device. An attacker could exploit this vulnerability by sending crafted VPN traffic to an affected device. A successful exploit could allow the attacker to cause the affected device to hang or crash, resulting in a DoS condition. Cisco Bug IDs: CSCvd39267.

INFO

Published Date :

March 28, 2018, 10:29 p.m.

Last Modified :

July 16, 2024, 5:25 p.m.

Source :

[email protected]

Remotely Exploitable :

Yes !

Impact Score :

3.6

Exploitability Score :

3.9

CISA Notification

CISA KEV (Known Exploited Vulnerabilities)

For the benefit of the cybersecurity community and network defenders—and to help every organization better manage vulnerabilities and keep pace with threat activity—CISA maintains the authoritative source of vulnerabilities that have been exploited in the wild.

Due Date: Mar 17, 2022

Alert Date: Mar 03, 2022 | 931 days ago

Description :

Required Action :

Apply updates per vendor instructions.

Public PoC/Exploit Available at Github

CVE-2018-0154 has a 1 public PoC/Exploit available at Github. Go to the Public Exploits tab to see the list.

Affected Products

The following products are affected by CVE-2018-0154 vulnerability. Even if cvefeed.io is aware of the exact versions of the products that are affected, the information is not represented in the table below.

ID	Vendor	Product
1	Cisco	ios
2	Cisco	catalyst_8500
3	Cisco	catalyst_8510csr
4	Cisco	catalyst_8510msr
5	Cisco	catalyst_8540csr
6	Cisco	catalyst_8540msr
7	Cisco	asr_1001
8	Cisco	asr_1002
9	Cisco	asr_1002-x
10	Cisco	asr_1004
11	Cisco	asr_1006
12	Cisco	asr_1013
13	Cisco	1801_integrated_service_router
14	Cisco	1802_integrated_service_router
15	Cisco	1803_integrated_service_router
16	Cisco	1811_integrated_service_router
17	Cisco	1812_integrated_service_router
18	Cisco	1841_integrated_service_router
19	Cisco	1861_integrated_service_router
20	Cisco	1921_integrated_services_router
21	Cisco	1941_integrated_services_router
22	Cisco	1941w_integrated_services_router
23	Cisco	catalyst_3850
24	Cisco	catalyst_3850-12s-e
25	Cisco	catalyst_3850-12s-s
26	Cisco	catalyst_3850-12x48u
27	Cisco	catalyst_3850-12xs-e
28	Cisco	catalyst_3850-12xs-s
29	Cisco	catalyst_3850-16xs-e
30	Cisco	catalyst_3850-16xs-s
31	Cisco	catalyst_3850-24p-e
32	Cisco	catalyst_3850-24p-l
33	Cisco	catalyst_3850-24p-s
34	Cisco	catalyst_3850-24pw-s
35	Cisco	catalyst_3850-24s-e
36	Cisco	catalyst_3850-24s-s
37	Cisco	catalyst_3850-24t-e
38	Cisco	catalyst_3850-24t-l
39	Cisco	catalyst_3850-24t-s
40	Cisco	catalyst_3850-24u
41	Cisco	catalyst_3850-24u-e
42	Cisco	catalyst_3850-24u-l
43	Cisco	catalyst_3850-24u-s
44	Cisco	catalyst_3850-24xs
45	Cisco	catalyst_3850-24xs-e
46	Cisco	catalyst_3850-24xs-s
47	Cisco	catalyst_3850-24xu
48	Cisco	catalyst_3850-24xu-e
49	Cisco	catalyst_3850-24xu-l
50	Cisco	catalyst_3850-24xu-s
51	Cisco	catalyst_3850-32xs-e
52	Cisco	catalyst_3850-32xs-s
53	Cisco	catalyst_3850-48f-e
54	Cisco	catalyst_3850-48f-l
55	Cisco	catalyst_3850-48f-s
56	Cisco	catalyst_3850-48p-e
57	Cisco	catalyst_3850-48p-l
58	Cisco	catalyst_3850-48p-s
59	Cisco	catalyst_3850-48pw-s
60	Cisco	catalyst_3850-48t-e
61	Cisco	catalyst_3850-48t-l
62	Cisco	catalyst_3850-48t-s
63	Cisco	catalyst_3850-48u
64	Cisco	catalyst_3850-48u-e
65	Cisco	catalyst_3850-48u-l
66	Cisco	catalyst_3850-48u-s
67	Cisco	catalyst_3850-48xs
68	Cisco	catalyst_3850-48xs-e
69	Cisco	catalyst_3850-48xs-f-e
70	Cisco	catalyst_3850-48xs-f-s
71	Cisco	catalyst_3850-48xs-s
72	Cisco	catalyst_3850-nm-2-40g
73	Cisco	catalyst_3850-nm-8-10g
74	Cisco	8201
75	Cisco	8202
76	Cisco	8208
77	Cisco	8212
78	Cisco	8218
79	Cisco	1100-4g\/6g_integrated_services_router
80	Cisco	1100-4g_integrated_services_router
81	Cisco	1100-4gltegb_integrated_services_router
82	Cisco	1100-4gltena_integrated_services_router
83	Cisco	1100-4p_integrated_services_router
84	Cisco	1100-6g_integrated_services_router
85	Cisco	1100-8p_integrated_services_router
86	Cisco	1100-lte_integrated_services_router
87	Cisco	1100_integrated_services_router
88	Cisco	1101-4p_integrated_services_router
89	Cisco	1101_integrated_services_router
90	Cisco	1109-2p_integrated_services_router
91	Cisco	1109-4p_integrated_services_router
92	Cisco	1109_integrated_services_router
93	Cisco	1111x-8p_integrated_services_router
94	Cisco	111x_integrated_services_router
95	Cisco	1120_integrated_services_router
96	Cisco	1131_integrated_services_router
97	Cisco	1160_integrated_services_router
98	Cisco	1905_integrated_services_router
99	Cisco	1906c_integrated_services_router
100	Cisco	4000_integrated_services_router
101	Cisco	4221_integrated_services_router
102	Cisco	8101-32fh
103	Cisco	8101-32h
104	Cisco	8102-64h
105	Cisco	8201-32fh
106	Cisco	8800_12-slot
107	Cisco	8800_18-slot
108	Cisco	8800_4-slot
109	Cisco	8800_8-slot
110	Cisco	8804
111	Cisco	8808
112	Cisco	8812
113	Cisco	8818
114	Cisco	9800-40
115	Cisco	9800-80
116	Cisco	9800-cl
117	Cisco	9800-l
118	Cisco	asr_1000
119	Cisco	asr_1000-esp100
120	Cisco	asr_1000-esp100-x
121	Cisco	asr_1000-esp200-x
122	Cisco	asr_1001-hx
123	Cisco	asr_1001-hx_r
124	Cisco	asr_1001-x
125	Cisco	asr_1001-x_r
126	Cisco	asr_1002-hx
127	Cisco	asr_1002-hx_r
128	Cisco	asr_1002-x_r
129	Cisco	asr_1006-x
130	Cisco	asr_1009-x
131	Cisco	asr_1023
132	Cisco	catalyst_8200
133	Cisco	catalyst_8300
134	Cisco	catalyst_8300-1n1s-4t2x
135	Cisco	catalyst_8300-1n1s-6t
136	Cisco	catalyst_8300-2n2s-4t2x
137	Cisco	catalyst_8300-2n2s-6t
138	Cisco	catalyst_8500-4qc
139	Cisco	catalyst_8500l
140	Cisco	catalyst_9200
141	Cisco	catalyst_9200cx
142	Cisco	catalyst_9200l
143	Cisco	catalyst_9300
144	Cisco	catalyst_9300-24p-a
145	Cisco	catalyst_9300-24p-e
146	Cisco	catalyst_9300-24s-a
147	Cisco	catalyst_9300-24s-e
148	Cisco	catalyst_9300-24t-a
149	Cisco	catalyst_9300-24t-e
150	Cisco	catalyst_9300-24u-a
151	Cisco	catalyst_9300-24u-e
152	Cisco	catalyst_9300-24ux-a
153	Cisco	catalyst_9300-24ux-e
154	Cisco	catalyst_9300-48p-a
155	Cisco	catalyst_9300-48p-e
156	Cisco	catalyst_9300-48s-a
157	Cisco	catalyst_9300-48s-e
158	Cisco	catalyst_9300-48t-a
159	Cisco	catalyst_9300-48t-e
160	Cisco	catalyst_9300-48u-a
161	Cisco	catalyst_9300-48u-e
162	Cisco	catalyst_9300-48un-a
163	Cisco	catalyst_9300-48un-e
164	Cisco	catalyst_9300-48uxm-a
165	Cisco	catalyst_9300-48uxm-e
166	Cisco	catalyst_9300l
167	Cisco	catalyst_9300l-24p-4g-a
168	Cisco	catalyst_9300l-24p-4g-e
169	Cisco	catalyst_9300l-24p-4x-a
170	Cisco	catalyst_9300l-24p-4x-e
171	Cisco	catalyst_9300l-24t-4g-a
172	Cisco	catalyst_9300l-24t-4g-e
173	Cisco	catalyst_9300l-24t-4x-a
174	Cisco	catalyst_9300l-24t-4x-e
175	Cisco	catalyst_9300l-48p-4g-a
176	Cisco	catalyst_9300l-48p-4g-e
177	Cisco	catalyst_9300l-48p-4x-a
178	Cisco	catalyst_9300l-48p-4x-e
179	Cisco	catalyst_9300l-48t-4g-a
180	Cisco	catalyst_9300l-48t-4g-e
181	Cisco	catalyst_9300l-48t-4x-a
182	Cisco	catalyst_9300l-48t-4x-e
183	Cisco	catalyst_9300l_stack
184	Cisco	catalyst_9300lm
185	Cisco	catalyst_9300x
186	Cisco	catalyst_9500
187	Cisco	catalyst_9500h
188	Cisco	catalyst_9600
189	Cisco	catalyst_9600_supervisor_engine-1
190	Cisco	catalyst_9600x
191	Cisco	catalyst_9800
192	Cisco	catalyst_9800-40
193	Cisco	catalyst_9800-40_wireless_controller
194	Cisco	catalyst_9800-80
195	Cisco	catalyst_9800-80_wireless_controller
196	Cisco	catalyst_9800-cl
197	Cisco	catalyst_9800-l
198	Cisco	catalyst_9800-l-c
199	Cisco	catalyst_9800-l-f
200	Cisco	catalyst_9800_embedded_wireless_controller
201	Cisco	catalyst_ie3200_rugged_switch
202	Cisco	catalyst_ie3300_rugged_switch
203	Cisco	1000_integrated_services_router
204	Cisco	1111x_integrated_services_router
205	Cisco	4321\/k9-rf_integrated_services_router
206	Cisco	4321\/k9-ws_integrated_services_router
207	Cisco	4321\/k9_integrated_services_router
208	Cisco	4321_integrated_services_router
209	Cisco	4331\/k9-rf_integrated_services_router
210	Cisco	4331\/k9-ws_integrated_services_router
211	Cisco	4331\/k9_integrated_services_router
212	Cisco	4331_integrated_services_router
213	Cisco	4351\/k9-rf_integrated_services_router
214	Cisco	4351\/k9-ws_integrated_services_router
215	Cisco	4351\/k9_integrated_services_router
216	Cisco	4351_integrated_services_router
217	Cisco	4431_integrated_services_router
218	Cisco	44461_integrated_services_router
219	Cisco	4451-x_integrated_services_router
220	Cisco	4451_integrated_services_router
221	Cisco	4461_integrated_services_router
222	Cisco	asr_1000-x
223	Cisco	cloud_services_router_1000v
224	Cisco	integrated_services_virtual_router
225	Cisco	catalyst_ie3400_heavy_duty_switch
226	Cisco	catalyst_ie3400_rugged_switch
227	Cisco	catalyst_ie9300
228	Cisco	esr-6300-con-k9
229	Cisco	esr-6300-ncp-k9
230	Cisco	8831
231	Cisco	catalyst_9400
232	Cisco	catalyst_9400_supervisor_engine-1
233	Cisco	catalyst_9407r
234	Cisco	catalyst_9410r
235	Cisco	esr6300
236	Cisco	cbr8_converged_broadband_router

: Total Affected Vendor : 1 | Products : 236

References to Advisories, Solutions, and Tools

Here, you will find a curated list of external links that provide in-depth information, practical solutions, and valuable tools related to CVE-2018-0154.

URL	Resource
http://www.securityfocus.com/bid/103559	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1040585	Broken Link Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-dos	Vendor Advisory

We scan GitHub repositories to detect new proof-of-concept exploits. Following list is a collection of public exploits and proof-of-concepts, which have been published on GitHub (sorted by the most recently updated).

Ostorlab/KEV

Ostorlab KEV: One-command to detect most remotely known exploitable vulnerabilities. Sourced from CISA KEV, Google's Tsunami, Ostorlab's Asteroid and Bug Bounty programs.

cisa-kev vulnerability 0day cisa exploits

Updated: 1 week, 5 days ago

516 stars 32 fork 32 watcher

Born at : April 19, 2022, 8:58 a.m. This repo has been linked 1181 different CVEs too.

Results are limited to the first 15 repositories due to potential performance issues.

The following list is the news that have been mention CVE-2018-0154 vulnerability anywhere in the article.

The following table lists the changes that have been made to the CVE-2018-0154 vulnerability over time.

Vulnerability history details can be useful for understanding the evolution of a vulnerability, and for identifying the most recent changes that may impact the vulnerability's severity, exploitability, or other characteristics.

Modified Analysis by [email protected]

Jul. 16, 2024

Action	Type	Old Value	New Value
Removed	CVSS V3	NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Added	CVSS V3.1		NIST AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Changed	Reference Type	http://www.securityfocus.com/bid/103559 Third Party Advisory, VDB Entry	http://www.securityfocus.com/bid/103559 Broken Link, Third Party Advisory, VDB Entry
Changed	Reference Type	http://www.securitytracker.com/id/1040585 Third Party Advisory, VDB Entry	http://www.securitytracker.com/id/1040585 Broken Link, Third Party Advisory, VDB Entry
Changed	CPE Configuration	OR cpe:2.3:o:cisco:ios:-:::::::	AND OR cpe:2.3:o:cisco:ios:-::::::: OR cpe:2.3:h:cisco:1000_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4g\/6g_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-lte_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1109-2p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1109-4p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1109_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1111x-8p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1111x_integrated_services_router:-:::::::* cpe:2.3:h:cisco:111x_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1801_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1802_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1803_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1811_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1812_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1841_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1861_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1905_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1906c_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1921_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1941_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1941w_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4000_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4221_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4321\/k9-rf_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4321\/k9-ws_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4321\/k9_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4321_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4331\/k9-rf_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4331\/k9-ws_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4331\/k9_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4331_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4351\/k9-rf_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4351\/k9-ws_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4351\/k9_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4351_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4431_integrated_services_router:-:::::::* cpe:2.3:h:cisco:44461_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4451-x_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4451_integrated_services_router:-:::::::* cpe:2.3:h:cisco:4461_integrated_services_router:-:::::::* cpe:2.3:h:cisco:8101-32fh:-:::::::* cpe:2.3:h:cisco:8101-32h:-:::::::* cpe:2.3:h:cisco:8102-64h:-:::::::* cpe:2.3:h:cisco:8201:-:::::::* cpe:2.3:h:cisco:8201-32fh:-:::::::* cpe:2.3:h:cisco:8202:-:::::::* cpe:2.3:h:cisco:8208:-:::::::* cpe:2.3:h:cisco:8212:-:::::::* cpe:2.3:h:cisco:8218:-:::::::* cpe:2.3:h:cisco:8800_12-slot:-:::::::* cpe:2.3:h:cisco:8800_18-slot:-:::::::* cpe:2.3:h:cisco:8800_4-slot:-:::::::* cpe:2.3:h:cisco:8800_8-slot:-:::::::* cpe:2.3:h:cisco:8804:-:::::::* cpe:2.3:h:cisco:8808:-:::::::* cpe:2.3:h:cisco:8812:-:::::::* cpe:2.3:h:cisco:8818:-:::::::* cpe:2.3:h:cisco:8831:-:::::::* cpe:2.3:h:cisco:9800-40:-:::::::* cpe:2.3:h:cisco:9800-80:-:::::::* cpe:2.3:h:cisco:9800-cl:-:::::::* cpe:2.3:h:cisco:9800-l:-:::::::* cpe:2.3:h:cisco:asr_1000:-:::::::* cpe:2.3:h:cisco:asr_1000-esp100:-:::::::* cpe:2.3:h:cisco:asr_1000-esp100-x:-:::::::* cpe:2.3:h:cisco:asr_1000-esp200-x:-:::::::* cpe:2.3:h:cisco:asr_1000-x:-:::::::* cpe:2.3:h:cisco:asr_1001:-:::::::* cpe:2.3:h:cisco:asr_1001-hx:-:::::::* cpe:2.3:h:cisco:asr_1001-hx_r:-:::::::* cpe:2.3:h:cisco:asr_1001-x:-:::::::* cpe:2.3:h:cisco:asr_1001-x_r:-:::::::* cpe:2.3:h:cisco:asr_1002:-:::::::* cpe:2.3:h:cisco:asr_1002-hx:-:::::::* cpe:2.3:h:cisco:asr_1002-hx_r:-:::::::* cpe:2.3:h:cisco:asr_1002-x:-:::::::* cpe:2.3:h:cisco:asr_1002-x_r:-:::::::* cpe:2.3:h:cisco:asr_1004:-:::::::* cpe:2.3:h:cisco:asr_1006:-:::::::* cpe:2.3:h:cisco:asr_1006-x:-:::::::* cpe:2.3:h:cisco:asr_1009-x:-:::::::* cpe:2.3:h:cisco:asr_1013:-:::::::* cpe:2.3:h:cisco:asr_1023:-:::::::* cpe:2.3:h:cisco:catalyst_3850:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12s-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12s-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12x48u:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-12xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-16xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-16xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24p-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24p-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24p-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24pw-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24s-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24s-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24t-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24t-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24t-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24u-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xs:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-24xu-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-32xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-32xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48f-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48f-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48f-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48p-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48p-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48p-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48pw-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48t-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48t-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48t-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u-l:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48u-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-f-e:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-f-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-48xs-s:-:::::::* cpe:2.3:h:cisco:catalyst_3850-nm-2-40g:-:::::::* cpe:2.3:h:cisco:catalyst_3850-nm-8-10g:-:::::::* cpe:2.3:h:cisco:catalyst_8200:-:::::::* cpe:2.3:h:cisco:catalyst_8300:-:::::::* cpe:2.3:h:cisco:catalyst_8300-1n1s-4t2x:-:::::::* cpe:2.3:h:cisco:catalyst_8300-1n1s-6t:-:::::::* cpe:2.3:h:cisco:catalyst_8300-2n2s-4t2x:-:::::::* cpe:2.3:h:cisco:catalyst_8300-2n2s-6t:-:::::::* cpe:2.3:h:cisco:catalyst_8500:-:::::::* cpe:2.3:h:cisco:catalyst_8500-4qc:-:::::::* cpe:2.3:h:cisco:catalyst_8500l:-:::::::* cpe:2.3:h:cisco:catalyst_8510csr:-:::::::* cpe:2.3:h:cisco:catalyst_8510msr:-:::::::* cpe:2.3:h:cisco:catalyst_8540csr:-:::::::* cpe:2.3:h:cisco:catalyst_8540msr:-:::::::* cpe:2.3:h:cisco:catalyst_9200:-:::::::* cpe:2.3:h:cisco:catalyst_9200cx:-:::::::* cpe:2.3:h:cisco:catalyst_9200l:-:::::::* cpe:2.3:h:cisco:catalyst_9300:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24p-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24p-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24s-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24s-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24t-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24t-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24u-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24u-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24ux-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-24ux-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48p-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48p-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48s-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48s-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48t-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48t-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48u-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48u-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48un-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48un-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48uxm-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300-48uxm-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24p-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-24t-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48p-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4g-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4g-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4x-a:-:::::::* cpe:2.3:h:cisco:catalyst_9300l-48t-4x-e:-:::::::* cpe:2.3:h:cisco:catalyst_9300l_stack:-:::::::* cpe:2.3:h:cisco:catalyst_9300lm:-:::::::* cpe:2.3:h:cisco:catalyst_9300x:-:::::::* cpe:2.3:h:cisco:catalyst_9400:-:::::::* cpe:2.3:h:cisco:catalyst_9400_supervisor_engine-1:-:::::::* cpe:2.3:h:cisco:catalyst_9407r:-:::::::* cpe:2.3:h:cisco:catalyst_9410r:-:::::::* cpe:2.3:h:cisco:catalyst_9500:-:::::::* cpe:2.3:h:cisco:catalyst_9500h:-:::::::* cpe:2.3:h:cisco:catalyst_9600:-:::::::* cpe:2.3:h:cisco:catalyst_9600_supervisor_engine-1:-:::::::* cpe:2.3:h:cisco:catalyst_9600x:-:::::::* cpe:2.3:h:cisco:catalyst_9800:-:::::::* cpe:2.3:h:cisco:catalyst_9800-40:-:::::::* cpe:2.3:h:cisco:catalyst_9800-40_wireless_controller:-:::::::* cpe:2.3:h:cisco:catalyst_9800-80:-:::::::* cpe:2.3:h:cisco:catalyst_9800-80_wireless_controller:-:::::::* cpe:2.3:h:cisco:catalyst_9800-cl:-:::::::* cpe:2.3:h:cisco:catalyst_9800-l:-:::::::* cpe:2.3:h:cisco:catalyst_9800-l-c:-:::::::* cpe:2.3:h:cisco:catalyst_9800-l-f:-:::::::* cpe:2.3:h:cisco:catalyst_9800_embedded_wireless_controller:-:::::::* cpe:2.3:h:cisco:catalyst_ie3200_rugged_switch:-:::::::* cpe:2.3:h:cisco:catalyst_ie3300_rugged_switch:-:::::::* cpe:2.3:h:cisco:catalyst_ie3400_heavy_duty_switch:-:::::::* cpe:2.3:h:cisco:catalyst_ie3400_rugged_switch:-:::::::* cpe:2.3:h:cisco:catalyst_ie9300:-:::::::* cpe:2.3:h:cisco:cbr8_converged_broadband_router:-:::::::* cpe:2.3:h:cisco:cloud_services_router_1000v:-:::::::* cpe:2.3:h:cisco:esr-6300-con-k9:-:::::::* cpe:2.3:h:cisco:esr-6300-ncp-k9:-:::::::* cpe:2.3:h:cisco:esr6300:-:::::::* cpe:2.3:h:cisco:integrated_services_virtual_router:-:::::::*

CVE Modified by [email protected]

May. 14, 2024

Action Type Old Value New Value
CVE Modified by [email protected]

Oct. 09, 2019

Action Type Old Value New Value

Added CWE Cisco Systems, Inc. CWE-399
CWE Remap by [email protected]

Oct. 03, 2019

Action Type Old Value New Value

Changed CWE CWE-399 CWE-399 NVD-CWE-noinfo

Action	Type	Old Value	New Value
Added	CWE		Cisco Systems, Inc. CWE-399

Action	Type	Old Value	New Value
Changed	CWE	CWE-399 CWE-399	NVD-CWE-noinfo

Initial Analysis by [email protected]

Apr. 20, 2018

Action	Type	Old Value	New Value
Added	CVSS V2		(AV:N/AC:L/Au:N/C:N/I:N/A:C)
Added	CVSS V3		AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Changed	Reference Type	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-dos No Types Assigned	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-dos Vendor Advisory
Changed	Reference Type	http://www.securitytracker.com/id/1040585 No Types Assigned	http://www.securitytracker.com/id/1040585 Third Party Advisory, VDB Entry
Changed	Reference Type	http://www.securityfocus.com/bid/103559 No Types Assigned	http://www.securityfocus.com/bid/103559 Third Party Advisory, VDB Entry
Added	CWE		CWE-399
Added	CPE Configuration		OR cpe:2.3:o:cisco:ios:-:::::::

CVE Modified by [email protected]

Apr. 01, 2018

Action Type Old Value New Value

Added Reference http://www.securityfocus.com/bid/103559 [No Types Assigned]
CVE Modified by [email protected]

Mar. 30, 2018

Action Type Old Value New Value

Added Reference http://www.securitytracker.com/id/1040585 [No Types Assigned]

Action	Type	Old Value	New Value
Added	Reference		http://www.securityfocus.com/bid/103559 [No Types Assigned]

Action	Type	Old Value	New Value
Added	Reference		http://www.securitytracker.com/id/1040585 [No Types Assigned]

EPSS is a daily estimate of the probability of exploitation activity being observed over the next 30 days. Following chart shows the EPSS score history of the vulnerability.

CWE - Common Weakness Enumeration

While CVE identifies specific instances of vulnerabilities, CWE categorizes the common flaws or weaknesses that can lead to vulnerabilities. CVE-2018-0154 is associated with the following CWEs:

Common Attack Pattern Enumeration and Classification (CAPEC)

Common Attack Pattern Enumeration and Classification (CAPEC) stores attack patterns, which are descriptions of the common attributes and approaches employed by adversaries to exploit the CVE-2018-0154 weaknesses.

CVE-2018-0154

Cisco IOS Software Integrated Services Module for - [Actively Exploited]

Description

INFO

March 28, 2018, 10:29 p.m.

July 16, 2024, 5:25 p.m.

[email protected]

Yes !

3.6

3.9

CISA KEV (Known Exploited Vulnerabilities)

Public PoC/Exploit Available at Github

Affected Products

References to Advisories, Solutions, and Tools

Ostorlab/KEV

Modified Analysis by [email protected]

CVE Modified by [email protected]

CVE Modified by [email protected]

CWE Remap by [email protected]

Initial Analysis by [email protected]

CVE Modified by [email protected]

CVE Modified by [email protected]

CWE - Common Weakness Enumeration

Common Attack Pattern Enumeration and Classification (CAPEC)

Exploit Prediction

0.41 }} 0.11%

0.74245

CVSS31 - Vulnerability Scoring System

Theme Customizer

Layout

Vertical

Horizontal

Two Column

Color Scheme

Light

Dark

Layout Width

Fluid

Boxed

Layout Position

Topbar Color

Light

Dark

Sidebar Size

Default

Compact

Small (Icon View)

Small Hover View

Sidebar View

Default

Detached

Sidebar Color

Light

Dark

Gradient

Preloader

Enable

Disable