6.5

CVE-2017-12232

Warning

EPSS 2.14%
Published 29.09.2017 01:34:48
Last modified 20.04.2025 01:37:25
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a misclassification of Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc03809.

Affected products Warnungen 1 Metrics 3 CWE 0 References 6

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Ios Version >= 15.0 <= 15.6

   Cisco ≫ 1000 Integrated Services Router Version-
   Cisco ≫ 1100-4g Integrated Services Router Version-
   Cisco ≫ 1100-4gltegb Integrated Services Router Version-
   Cisco ≫ 1100-4gltena Integrated Services Router Version-
   Cisco ≫ 1100-8p Integrated Services Router Version-
   Cisco ≫ 1100-lte Integrated Services Router Version-
   Cisco ≫ 1100 Integrated Services Router Version-
   Cisco ≫ 1101-4p Integrated Services Router Version-
   Cisco ≫ 1101 Integrated Services Router Version-
   Cisco ≫ 1109-2p Integrated Services Router Version-
   Cisco ≫ 1109-4p Integrated Services Router Version-
   Cisco ≫ 1109 Integrated Services Router Version-
   Cisco ≫ 1111x-8p Integrated Services Router Version-
   Cisco ≫ 1111x Integrated Services Router Version-
   Cisco ≫ 111x Integrated Services Router Version-
   Cisco ≫ 1120 Integrated Services Router Version-
   Cisco ≫ 1131 Integrated Services Router Version-
   Cisco ≫ 1160 Integrated Services Router Version-
   Cisco ≫ 1801 Integrated Service Router Version-
   Cisco ≫ 1802 Integrated Service Router Version-
   Cisco ≫ 1803 Integrated Service Router Version-
   Cisco ≫ 1811 Integrated Service Router Version-
   Cisco ≫ 1812 Integrated Service Router Version-
   Cisco ≫ 1841 Integrated Service Router Version-
   Cisco ≫ 1861 Integrated Service Router Version-
   Cisco ≫ 1905 Integrated Services Router Version-
   Cisco ≫ 1906c Integrated Services Router Version-
   Cisco ≫ 1921 Integrated Services Router Version-
   Cisco ≫ 1941 Integrated Services Router Version-
   Cisco ≫ 1941w Integrated Services Router Version-
   Cisco ≫ 4000 Integrated Services Router Version-
   Cisco ≫ 422 Integrated Services Router Version-
   Cisco ≫ 4221 Integrated Services Router Version-
   Cisco ≫ 4321 Integrated Services Router Version-
   Cisco ≫ 4331 Integrated Services Router Version-
   Cisco ≫ 4351 Integrated Services Router Version-
   Cisco ≫ 4431 Integrated Services Router Version-
   Cisco ≫ 44461 Integrated Services Router Version-
   Cisco ≫ 4451-x Integrated Services Router Version-
   Cisco ≫ 4451 Integrated Services Router Version-
   Cisco ≫ 4461 Integrated Services Router Version-
   Cisco ≫ 829 Industrial Integrated Services Router Version-
   Cisco ≫ 829 Industrial Integrated Services Routers Version-
   Cisco ≫ 829 Integrated Services Router Version-
   Cisco ≫ 860vae-w Integrated Services Router Version-
   Cisco ≫ 861 Integrated Services Router Version-
   Cisco ≫ 861w Integrated Services Router Version-
   Cisco ≫ 866vae Integrated Services Router Version-
   Cisco ≫ 867 Integrated Services Router Version-
   Cisco ≫ 867vae Integrated Services Router Version-
   Cisco ≫ 871 Integrated Services Router Version-
   Cisco ≫ 880-voice Integrated Services Router Version-
   Cisco ≫ 880 3g Integrated Services Router Version-
   Cisco ≫ 881-cube Integrated Services Router Version-
   Cisco ≫ 881 3g Integrated Services Router Version-
   Cisco ≫ 881 Integrated Services Router Version-
   Cisco ≫ 881w Integrated Services Router Version-
   Cisco ≫ 886 Integrated Services Router Version-
   Cisco ≫ 886va-cube Integrated Services Router Version-
   Cisco ≫ 886va-w Integrated Services Router Version-
   Cisco ≫ 886va Integrated Services Router Version-
   Cisco ≫ 886vag 3g Integrated Services Router Version-
   Cisco ≫ 887 Integrated Services Router Version-
   Cisco ≫ 887v Integrated Services Router Version-
   Cisco ≫ 887va-cube Integrated Services Router Version-
   Cisco ≫ 887va-w Integrated Services Router Version-
   Cisco ≫ 887va Integrated Services Router Version-
   Cisco ≫ 887vag 3g Integrated Services Router Version-
   Cisco ≫ 887vam-w Integrated Services Router Version-
   Cisco ≫ 887vamg 3g Integrated Services Router Version-
   Cisco ≫ 888-cube Integrated Services Router Version-
   Cisco ≫ 888 Integrated Services Router Version-
   Cisco ≫ 888e-cube Integrated Services Router Version-
   Cisco ≫ 888e Integrated Services Router Version-
   Cisco ≫ 888eg 3g Integrated Services Router Version-
   Cisco ≫ 888w Integrated Services Router Version-
   Cisco ≫ 891-24x Integrated Services Router Version-
   Cisco ≫ 891 Integrated Services Router Version-
   Cisco ≫ 891w Integrated Services Router Version-
   Cisco ≫ 892 Integrated Services Router Version-
   Cisco ≫ 892f-cube Integrated Services Router Version-
   Cisco ≫ 892w Integrated Services Router Version-
   Cisco ≫ Asr 1000 Version-
   Cisco ≫ Asr 1000-esp100 Version-
   Cisco ≫ Asr 1000-esp100-x Version-
   Cisco ≫ Asr 1000-esp200-x Version-
   Cisco ≫ Asr 1000-x Version-
   Cisco ≫ Asr 1000 Version-
   Cisco ≫ Asr 1001 Version-
   Cisco ≫ Asr 1001-hx Version-
   Cisco ≫ Asr 1001-hx R Version-
   Cisco ≫ Asr 1001-x Version-
   Cisco ≫ Asr 1001-x R Version-
   Cisco ≫ Asr 1002 Version-
   Cisco ≫ Asr 1002-hx Version-
   Cisco ≫ Asr 1002-hx R Version-
   Cisco ≫ Asr 1002-x Version-
   Cisco ≫ Asr 1002-x R Version-
   Cisco ≫ Asr 1004 Version-
   Cisco ≫ Asr 1006 Version-
   Cisco ≫ Asr 1006-x Version-
   Cisco ≫ Asr 1009-x Version-
   Cisco ≫ Asr 1013 Version-
   Cisco ≫ Asr 1023 Version-
   Cisco ≫ Catalyst 8200 Version-
   Cisco ≫ Catalyst 8300 Version-
   Cisco ≫ Catalyst 8300-1n1s-4t2x Version-
   Cisco ≫ Catalyst 8300-1n1s-6t Version-
   Cisco ≫ Catalyst 8300-2n2s-4t2x Version-
   Cisco ≫ Catalyst 8300-2n2s-6t Version-
   Cisco ≫ Catalyst 8500 Version-
   Cisco ≫ Catalyst 8500-4qc Version-
   Cisco ≫ Catalyst 8500l Version-
   Cisco ≫ Catalyst 8510csr Version-
   Cisco ≫ Catalyst 8510msr Version-
   Cisco ≫ Catalyst 8540csr Version-
   Cisco ≫ Catalyst 8540msr Version-
   Cisco ≫ Cloud Services Router 1000v Version-
   Cisco ≫ Integrated Services Virtual Router Version-

03.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Cisco IOS Software for Cisco Integrated Services Routers Denial-of-Service Vulnerability

Vulnerability

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service.

Description

Apply updates per vendor instructions.

Required actions

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.14%	0.835

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	6.1	6.5	6.9	AV:A/AC:L/Au:N/C:N/I:N/A:C

http://www.securityfocus.com/bid/101044

Third Party Advisory

Broken Link

VDB Entry

http://www.securitytracker.com/id/1039452

Third Party Advisory

Broken Link

VDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-rbip-dos

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-12232

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-12232

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-12232

EUVD