CVE-2018-0484

Name of the Vulnerable Software and Affected Versions Cisco IOS and IOS XE Software (affected versions not specified)

Description A vulnerability in the access control logic of the Secure Shell (SSH) server may allow connections sourced from a virtual routing and forwarding (VRF) instance despite the absence of the vrf-also keyword in the access-class configuration. The vulnerability is due to a missing check in the SSH server. An attacker could use this vulnerability to open an SSH connection to an affected device with a source address belonging to a VRF instance. Once connected, the attacker would still need to provide valid credentials to access the device.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.