Vulnerability Description
A vulnerability in the IPv6 Simple Network Management Protocol (SNMP) code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause high CPU usage or a reload of the device. The vulnerability is due to IPv6 sub block corruption. An attacker could exploit this vulnerability by polling the affected device IPv6 information. An exploit could allow the attacker to trigger high CPU usage or a reload of the device. Known Affected Releases: Denali-16.3.1. Cisco Bug IDs: CSCvb14640.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios | 3.16.1 |
| Cisco | Ios Xe | 3.16.1 |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/100648Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039290Third Party AdvisoryVDB Entry
- https://quickview.cloudapps.cisco.com/quickview/bug/CSCvb14640Vendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securityfocus.com/bid/100648Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1039290Third Party AdvisoryVDB Entry
- https://quickview.cloudapps.cisco.com/quickview/bug/CSCvb14640Vendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2017-12211?
CVE-2017-12211 is a vulnerability with a CVSS score of 5.3 (MEDIUM). A vulnerability in the IPv6 Simple Network Management Protocol (SNMP) code of Cisco IOS and Cisco IOS XE Software could allow an authenticated, remote attacker to cause high CPU usage or a reload of t...
How severe is CVE-2017-12211?
CVE-2017-12211 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-12211?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios, Cisco Ios Xe.