CiscoCVE-2017-3824CVE-2017-3824
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
72.2%
A vulnerability in the handling of list headers in Cisco cBR Series Converged Broadband Routers could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Cisco cBR-8 Converged Broadband Routers running vulnerable versions of Cisco IOS XE are affected. More Information: CSCux40637. Known Affected Releases: 15.5(3)S 15.6(1)S. Known Fixed Releases: 15.5(3)S2 15.6(1)S1 15.6(2)S 15.6(2)SP 16.4(1).
Affected configurations
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | ios_xe | 3.16.0 | cpe:2.3:o:cisco:ios_xe:3.16.0:*:*:*:*:*:*:* |
| cisco | ios_xe | 3.16.1 | cpe:2.3:o:cisco:ios_xe:3.16.1:*:*:*:*:*:*:* |
| cisco | ios_xe | 3.17.0 | cpe:2.3:o:cisco:ios_xe:3.17.0:*:*:*:*:*:*:* |
| cisco | cbr-8_converged_broadband_router | - | cpe:2.3:h:cisco:cbr-8_converged_broadband_router:-:*:*:*:*:*:*:* |
CNA Affected
[
{
"product": "Cisco IOS XE 15.x",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "Cisco IOS XE 15.x"
}
]
}
]Related
CVSS2
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:H/Au:N/C:N/I:N/A:C
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H
AI Score
Confidence
High
EPSS
Percentile
72.2%