Lucene search

CiscoCVE-2017-12234

HistorySep 29, 2017 - 1:34 a.m.

CVE-2017-12234

2017-09-2901:34:48

CWE-20

cisco

web.nvd.nist.gov

838

In Wild

cisco

ios

cip

vulnerabilities

remote attacker

dos

nvd

cve-2017-12234

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.003

Percentile

72.0%

JSON

Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of crafted CIP packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted CIP packets to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc43709.

Affected configurations

Nvd

Node

ciscoiosRange12.4–15.6

AND

cisco1000_integrated_services_routerMatch-

cisco1100-4g\/6g_integrated_services_routerMatch-

cisco1100-4g_integrated_services_routerMatch-

cisco1100-4gltegb_integrated_services_routerMatch-

cisco1100-4gltena_integrated_services_routerMatch-

cisco1100-4pMatch-

cisco1100-4p_integrated_services_routerMatch-

cisco1100-6g_integrated_services_routerMatch-

cisco1100-8pMatch-

cisco1100-8p_integrated_services_routerMatch-

cisco1100-lte_integrated_services_routerMatch-

cisco1100_integrated_services_routerMatch-

cisco1100_terminal_services_gatewaysMatch-

cisco1101-4pMatch-

cisco1101-4p_integrated_services_routerMatch-

cisco1101_integrated_services_routerMatch-

cisco1109-2pMatch-

cisco1109-4pMatch-

cisco1111-4pweMatch-

cisco1111-8pwbMatch-

cisco1111x-8pMatch-

cisco1113-8plteeaweMatch-

cisco1113-8pmweMatch-

cisco1113-8pweMatch-

cisco1116-4plteeaweMatch-

cisco1116-4pweMatch-

cisco1117-4plteeaweMatch-

cisco1117-4pmlteeaweMatch-

cisco1117-4pmweMatch-

cisco1117-4pweMatch-

cisco1120Match-

cisco1120_connected_grid_routerMatch-

cisco1120_integrated_services_routerMatch-

cisco1131_integrated_services_routerMatch-

cisco1160_integrated_services_routerMatch-

cisco1801_integrated_service_routerMatch-

cisco1802_integrated_service_routerMatch-

cisco1803_integrated_service_routerMatch-

cisco1811_integrated_service_routerMatch-

cisco1812_integrated_service_routerMatch-

cisco1841_integrated_service_routerMatch-

cisco1861_integrated_service_routerMatch-

cisco1905_integrated_services_routerMatch-

cisco1906c_integrated_services_routerMatch-

cisco1921_integrated_services_routerMatch-

cisco1941_integrated_services_routerMatch-

cisco1941w_integrated_services_routerMatch-

ciscocatalyst_ie3200_rugged_switchMatch-

ciscocatalyst_ie3300_rugged_switchMatch-

ciscocatalyst_ie3400_heavy_duty_switchMatch-

ciscocatalyst_ie3400_rugged_switchMatch-

ciscocatalyst_ie9300Match-

ciscoesr-6300-con-k9Match-

ciscoesr-6300-ncp-k9Match-

VendorProductVersionCPE
ciscoios*cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
cisco1000_integrated_services_router-cpe:2.3:h:cisco:1000_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-4g\/6g_integrated_services_router-cpe:2.3:h:cisco:1100-4g\/6g_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-4g_integrated_services_router-cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-4gltegb_integrated_services_router-cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-4gltena_integrated_services_router-cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-4p-cpe:2.3:h:cisco:1100-4p:-:*:*:*:*:*:*:*
cisco1100-4p_integrated_services_router-cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-6g_integrated_services_router-cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:*:*:*:*:*:*:*
cisco1100-8p-cpe:2.3:h:cisco:1100-8p:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios	*	cpe:2.3:o:cisco:ios::::::::
cisco	1000_integrated_services_router	-	cpe:2.3:h:cisco:1000_integrated_services_router:-:::::::*
cisco	1100-4g\/6g_integrated_services_router	-	cpe:2.3:h:cisco:1100-4g\/6g_integrated_services_router:-:::::::*
cisco	1100-4g_integrated_services_router	-	cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::*
cisco	1100-4gltegb_integrated_services_router	-	cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:::::::*
cisco	1100-4gltena_integrated_services_router	-	cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:::::::*
cisco	1100-4p	-	cpe:2.3:h:cisco:1100-4p:-:::::::*
cisco	1100-4p_integrated_services_router	-	cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::*
cisco	1100-6g_integrated_services_router	-	cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::*
cisco	1100-8p	-	cpe:2.3:h:cisco:1100-8p:-:::::::*

Rows per page:

1-10 of 551

CNA Affected

[
  {
    "product": "Cisco IOS",
    "vendor": "n/a",
    "versions": [
      {
        "status": "affected",
        "version": "Cisco IOS"
      }
    ]
  }
]

References

www.securityfocus.com/bid/101038

www.securitytracker.com/id/1039459

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cip

CVSS2

7.8

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.003

Percentile

72.0%

JSON

Related for CVE-2017-12234