CVE-2018-0473

CVE-2018-0473: Cisco IOS Software Precision Time Protocol Denial of Service Vulnerability

Vendor Cisco
Product Cisco IOS Software
Weakness CWE-399
Published October 5, 2018
Last update November 26, 2024

CVSS base score

What the vulnerability does

01Description

A vulnerability in the Precision Time Protocol (PTP) subsystem of Cisco IOS Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition of the Precision Time Protocol. The vulnerability is due to insufficient processing of PTP packets. An attacker could exploit this vulnerability by sending a custom PTP packet to, or through, an affected device. A successful exploit could allow the attacker to cause a DoS condition for the PTP subsystem, resulting in time synchronization issues across the network.

Key dates

02Disclosure timeline

October 5, 2018 CVE published
November 26, 2024 Record updated