Rewterz Threat Advisory –CVE-2018-0171 – Cisco IOS and Cisco IOS XE Smart Install Vulnerability

Rewterz Threat Advisory – CVE-2021-1498 – Cisco HyperFlex HX Data Platform Vulnerability

June 2, 2022

Rewterz Threat Advisory –CVE-2022-30533 – Modern Events Calendar Lite plugin for WordPress Vulnerability

June 3, 2022

Rewterz Threat Advisory –CVE-2018-0171 – Cisco IOS and Cisco IOS XE Smart Install Vulnerability

Severity

High

Analysis Summary

CVE-2018-0171

Cisco IOS and Cisco IOS XE are vulnerable to a buffer overflow, caused by improper bounds checking by the Smart Install feature. By sending a specially crafted Smart Install message to an affected device on TCP port 4786, a remote attacker could overflow a buffer and execute arbitrary code on the system or cause the application to crash.

Impact

Buffer Overflow

Indicators Of Compromise

CVE

CVE-2018-0171

Affected Vendors

Cisco

Affected Products

Cisco IOS 12.2
Cisco IOS XE 16.1.1

Remediation

Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.

Cisco Security Advisory

Rewterz Threat Advisory – CVE-2021-1498 – Cisco HyperFlex HX Data Platform Vulnerability

Rewterz Threat Advisory –CVE-2022-30533 – Modern Events Calendar Lite plugin for WordPress Vulnerability

Rewterz Threat Advisory –CVE-2018-0171 – Cisco IOS and Cisco IOS XE Smart Install Vulnerability

Severity

Analysis Summary

CVE-2018-0171

Impact

Indicators Of Compromise

CVE

Affected Vendors

Affected Products

Remediation

Security Operations Centers across the region

Saudi Arabia

UAE

Oman

Pakistan