CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Mar 17, 2022
Description
There is a buffer overflow vulnerability in the Link Layer Discovery Protocol (LLDP) subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software which could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition or execute arbitrary code.
EPSS — Exploit Probability
1.2%
Higher than 78.8% of all CVEs
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2018-0167
Risk Assessment
ELEVATEDIn CISA KEV
Details
- Severity
- High
- EPSS
- 1.2%
- CISA KEV
- Yes
- Ransomware
- Unknown
- Articles
- 0
Timeline
Published
Mar 3, 2022
Added to KEV
Mar 3, 2022
Remediation Due
Mar 17, 2022