CVE-2018-0480

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software (affected versions not specified)

Description A vulnerability in the errdisable per VLAN feature could allow an unauthenticated, adjacent attacker to cause the device to crash, leading to a denial of service (DoS) condition. The issue is due to a race condition that occurs when the VLAN and port enter an errdisabled state, resulting in an incorrect state in the software. An attacker could exploit this by sending frames that trigger the errdisable condition, potentially causing the affected device to crash.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.