Vulnerability Description
A vulnerability in the forwarding component of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an authenticated, local attacker to cause the router to stop forwarding data traffic across Traffic Engineering (TE) tunnels, resulting in a denial of service (DoS) condition. More Information: CSCvd16665. Known Affected Releases: 6.2.11.BASE. Known Fixed Releases: 6.1.3 6.1.2 6.3.1.8i.BASE 6.2.11.8i.BASE 6.2.2.9i.BASE 6.1.32.11i.BASE 6.1.31.10i.BASE 6.1.4.3i.BASE.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Ios Xr | 6.0.0 |
References
- http://www.securityfocus.com/bid/98987Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038630
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2MitigationVendor Advisory
- http://www.securityfocus.com/bid/98987Third Party AdvisoryVDB Entry
- http://www.securitytracker.com/id/1038630
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2MitigationVendor Advisory
FAQ
What is CVE-2017-6666?
CVE-2017-6666 is a vulnerability with a CVSS score of 6.0 (MEDIUM). A vulnerability in the forwarding component of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an authenticated, local attacker to cause the router to ...
How severe is CVE-2017-6666?
CVE-2017-6666 has been rated MEDIUM with a CVSS base score of 6.0/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2017-6666?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Ios Xr.