Cisco IOS XE
Cisco
Actively exploited vulnerabilities
The US cybersecurity agency CISA lists these vulnerabilities in its catalog of Known Exploited Vulnerabilities. Check your version and patch or mitigate promptly.
- CVE-2018-0156Cisco IOS Software and Cisco IOS XE Software Smart Install Denial-of-Service Vulnerability
- CVE-2018-0158Cisco IOS and XE Software Internet Key Exchange Memory Leak Vulnerability
- CVE-2018-0159Cisco IOS and XE Software Internet Key Exchange Version 1 Denial-of-Service Vulnerability
- CVE-2023-20273Cisco IOS XE Web UI Command Injection Vulnerability
Source: CISA KEV. The CVE is matched to the product automatically — when in doubt, the linked NVD entry applies.
Cisco IOS XE at a glance
Cisco IOS XE is the operating system on many Cisco routers, switches and wireless controllers. Cisco ships IOS XE releases plus security advisories; as core network infrastructure that has seen actively exploited vulnerabilities (notably in the web UI), prompt patching is essential.
For admins the essentials: never expose the web management interface to untrusted networks, apply advisories on a priority basis, and pick the right IOS XE train per platform. Take a config backup before upgrading and use a maintenance window; verify routing/switching and critical services afterwards. Track the software version and its support lifecycle per device — hardware past support gets no fixes. Subscribe to Cisco's security advisories; patchletter surfaces new IOS XE releases automatically.
Release history · as detected by patchletter
No releases recorded yet — the source was just added.
Never miss a Cisco IOS XE update
We check the source daily and email you — instantly or as a digest. Free, one-click unsubscribe.
Watch Cisco IOS XE