CVE-2018-0273

Name of the Vulnerable Software and Affected Versions: Cisco StarOS for Cisco Aggregation Services Router (ASR) 5000 Series Routers and Virtualized Packet Core (VPC) System Software (affected versions not specified)

Description: A vulnerability in the IPsec Manager could allow an unauthenticated, remote attacker to terminate all active IPsec VPN tunnels and prevent new tunnels from being established, resulting in a denial of service (DoS) condition. This is due to improper processing of corrupted Internet Key Exchange Version 2 (IKEv2) messages. An attacker could exploit this by sending crafted IKEv2 messages toward an affected router, causing the ipsecmgr service to reload, which in turn terminates all IPsec VPN tunnels and prevents new ones from being established until the service restarts.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.