CVE-2018-0180

Name of the Vulnerable Software and Affected Versions: Cisco IOS Software versions 15.4(2)T through 15.4(3)M and 15.4(2)CG and later

Description: Multiple vulnerabilities in the Login Enhancements (Login Block) feature could allow an unauthenticated, remote attacker to trigger a reload of an affected system, resulting in a denial of service (DoS) condition.

Recommendations: For versions 15.4(2)T and later, consider disabling the Login Enhancements (Login Block) feature until a patch is available. For versions 15.4(3)M and later, restrict access to the affected system to minimize the risk of exploitation. For version 15.4(2)CG and later, avoid using the Login Block feature in the affected API endpoint until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.