Cybersecurity Alerts

Cisco IOS and IOS XE Software Improper Input Validation Vulnerability

A vulnerability in the Cisco IOS Software and Cisco IOS XE Software function that restores encapsulated option 82 information in DHCP Version 4 (DHCPv4) packets can allow for denial-of-service (DoS).

Required Action

Apply updates per vendor instructions.

Weakness Classification

CWE-20

References

• https://nvd.nist.gov/vuln/detail/CVE-2018-0173