Lyrie
Active Exploitation
ACTIVELY EXPLOITED3 sources verified·1 min read
By Lyrie Threat Intelligence·3/3/2022

CVE-2018-0155 added to CISA KEV: Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches

Status: ✅ Confirmed exploited in the wild

Date added: 2022-03-03

Required action: Apply updates per vendor instructions.

Due date: 2022-03-17

Why this matters

A vulnerability in the Bidirectional Forwarding Detection (BFD) offload implementation of Cisco Catalyst 4500 Series Switches and Cisco Catalyst 4500-X Series Switches could allow an unauthenticated, remote attacker to cause a crash of the iosd process, causing a denial-of-service (DoS) condition.

Sources

Lyrie Verdict

Lyrie's autonomous detection layer catches active exploitation primitives at machine speed — closing the gap between disclosure and weaponization that traditional defense simply can't cover.

#cisco#catalyst-4500-series-switches-and-cisco-catalyst-4500-x-series-switches#cisa-kev#exploited-itw

Validated sources

  1. [1]CISA Known Exploited Vulnerabilities Catalog
  2. [2]NVD entry
  3. [3]MITRE CVE record