Vulnerability Details : CVE-2018-0158
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a memory leak or a reload of an affected device that leads to a denial of service (DoS) condition. The vulnerability is due to incorrect processing of certain IKEv2 packets. An attacker could exploit this vulnerability by sending crafted IKEv2 packets to an affected device to be processed. A successful exploit could cause an affected device to continuously consume memory and eventually reload, resulting in a DoS condition. Cisco Bug IDs: CSCvf22394.
Vulnerability category: Denial of service
Products affected by CVE-2018-0158
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.12:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.2:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.4:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.5:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.10:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.8:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.1:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.11:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.7:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios:15.5\(3\)s1.9:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.5:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.7:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.8:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.9:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.1:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.10:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.11:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.2:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.12:*:*:*:*:*:*:*
- cpe:2.3:o:cisco:ios_xe:15.5\(3\)s1.4:*:*:*:*:*:*:*
CVE-2018-0158 is in the CISA Known Exploited Vulnerabilities Catalog
CISA vulnerability name:
Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability
CISA required action:
Apply updates per vendor instructions.
CISA description:
A vulnerability in the implementation of Internet Key Exchange Version 1 (IKEv1) functionality in Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial-of-service (DoS) condition.
Notes:
https://nvd.nist.gov/vuln/detail/CVE-2018-0158
Added on
2022-03-03
Action due date
2022-03-17
Exploit prediction scoring system (EPSS) score for CVE-2018-0158
15.93%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 94 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2018-0158
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
|---|---|---|---|---|---|---|
|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:N/I:N/A:C |
10.0
|
6.9
|
NIST | |
|
8.6
|
HIGH | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H |
3.9
|
4.0
|
NIST | |
|
8.6
|
HIGH | CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H |
3.9
|
4.0
|
NIST | 2024-07-16 |
CWE ids for CVE-2018-0158
-
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.Assigned by:
- psirt@cisco.com (Secondary)
- ykramarz@cisco.com (Secondary)
-
The product does not sufficiently track and release allocated memory after it has been used, making the memory unavailable for reallocation and reuse.Assigned by: nvd@nist.gov (Primary)
-
The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.Assigned by: nvd@nist.gov (Primary)
References for CVE-2018-0158
-
http://www.securitytracker.com/id/1040595
Cisco IOS/IOS XE IKE Processing Flaws Let Remote Users Cause the Target System to Reload - SecurityTrackerBroken Link;Third Party Advisory;VDB Entry
-
http://www.securityfocus.com/bid/103566
Cisco IOS and IOS XE Software Internet Key Exchang CVE-2018-0158 Denial of Service VulnerabilityBroken Link;Third Party Advisory;VDB Entry
-
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-04
Rockwell Automation Stratix and ArmorStratix Switches | CISAThird Party Advisory;US Government Resource;VDB Entry
-
https://ics-cert.us-cert.gov/advisories/ICSA-18-107-03
Rockwell Automation Stratix Services Router | CISAThird Party Advisory;US Government Resource;VDB Entry
-
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180328-ike
Cisco IOS and IOS XE Software Internet Key Exchange Memory Leak VulnerabilityVendor Advisory
Jump to