CVE-2018-0189

Name of the Vulnerable Software and Affected Versions Cisco IOS Software and Cisco IOS XE Software (affected versions not specified)

Description A vulnerability in the Forwarding Information Base (FIB) code could allow an unauthenticated, network attacker to cause a denial of service (DoS) condition. The issue is due to a limitation in the way the FIB internally represents recursive routes. An attacker could exploit this by injecting routes into the routing protocol with a specific recursive pattern, potentially causing an affected device to reload and creating a DoS condition. The attacker must be in a position on the network to inject recursive routes with a specific pattern.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.