10

CVE-2017-12240

Warnung

EPSS 24.94%
Veröffentlicht 29.09.2017 01:34:49
Zuletzt bearbeitet 20.04.2025 01:37:25
Quelle psirt@cisco.com
Teams Watchlist Login
Unerledigt Login

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system. The attacker could also cause an affected system to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a buffer overflow condition in the DHCP relay subsystem of the affected software. An attacker could exploit this vulnerability by sending a crafted DHCP Version 4 (DHCPv4) packet to an affected system. A successful exploit could allow the attacker to execute arbitrary code and gain full control of the affected system or cause the affected system to reload, resulting in a DoS condition. Cisco Bug IDs: CSCsm45390, CSCuw77959.

Betroffene Produkte Warnungen 1 Metriken 3 CWE 2 Referenzen 8

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Cisco ≫ Ios Version >= 12.2 <= 15.6

   Cisco ≫ 1000 Integrated Services Router Version-
   Cisco ≫ 1100-4g Integrated Services Router Version-
   Cisco ≫ 1100-4gltegb Integrated Services Router Version-
   Cisco ≫ 1100-4gltena Integrated Services Router Version-
   Cisco ≫ 1100-4p Integrated Services Router Version-
   Cisco ≫ 1100-6g Integrated Services Router Version-
   Cisco ≫ 1100-8p Integrated Services Router Version-
   Cisco ≫ 1100-lte Integrated Services Router Version-
   Cisco ≫ 1100 Integrated Services Router Version-
   Cisco ≫ 1101-4p Integrated Services Router Version-
   Cisco ≫ 1101 Integrated Services Router Version-
   Cisco ≫ 1109-2p Integrated Services Router Version-
   Cisco ≫ 1109-4p Integrated Services Router Version-
   Cisco ≫ 1109 Integrated Services Router Version-
   Cisco ≫ 1111x-8p Integrated Services Router Version-
   Cisco ≫ 1111x Integrated Services Router Version-
   Cisco ≫ 111x Integrated Services Router Version-
   Cisco ≫ 1120 Integrated Services Router Version-
   Cisco ≫ 1131 Integrated Services Router Version-
   Cisco ≫ 1160 Integrated Services Router Version-
   Cisco ≫ 1801 Integrated Service Router Version-
   Cisco ≫ 1802 Integrated Service Router Version-
   Cisco ≫ 1803 Integrated Service Router Version-
   Cisco ≫ 1811 Integrated Service Router Version-
   Cisco ≫ 1812 Integrated Service Router Version-
   Cisco ≫ 1841 Integrated Service Router Version-
   Cisco ≫ 1861 Integrated Service Router Version-
   Cisco ≫ 1905 Integrated Services Router Version-
   Cisco ≫ 1906c Integrated Services Router Version-
   Cisco ≫ 1921 Integrated Services Router Version-
   Cisco ≫ 1941 Integrated Services Router Version-
   Cisco ≫ 1941w Integrated Services Router Version-
   Cisco ≫ 4000 Integrated Services Router Version-
   Cisco ≫ 422 Integrated Services Router Version-
   Cisco ≫ 4221 Integrated Services Router Version-
   Cisco ≫ 8101-32fh Version-
   Cisco ≫ 8101-32h Version-
   Cisco ≫ 8102-64h Version-
   Cisco ≫ 8201 Version-
   Cisco ≫ 8201-32fh Version-
   Cisco ≫ 8202 Version-
   Cisco ≫ 8208 Version-
   Cisco ≫ 8212 Version-
   Cisco ≫ 8218 Version-
   Cisco ≫ 8800 12-slot Version-
   Cisco ≫ 8800 18-slot Version-
   Cisco ≫ 8800 4-slot Version-
   Cisco ≫ 8800 8-slot Version-
   Cisco ≫ 8804 Version-
   Cisco ≫ 8808 Version-
   Cisco ≫ 8812 Version-
   Cisco ≫ 8818 Version-
   Cisco ≫ 8831 Version-
   Cisco ≫ 9800-40 Version-
   Cisco ≫ 9800-80 Version-
   Cisco ≫ 9800-cl Version-
   Cisco ≫ 9800-l Version-
   Cisco ≫ Asr 1000 Version-
   Cisco ≫ Asr 1000-esp100 Version-
   Cisco ≫ Asr 1000-esp100-x Version-
   Cisco ≫ Asr 1000-esp200-x Version-
   Cisco ≫ Asr 1000-x Version-
   Cisco ≫ Asr 1001 Version-
   Cisco ≫ Asr 1001-hx Version-
   Cisco ≫ Asr 1001-hx R Version-
   Cisco ≫ Asr 1001-x Version-
   Cisco ≫ Asr 1001-x R Version-
   Cisco ≫ Asr 1002 Version-
   Cisco ≫ Asr 1002-hx Version-
   Cisco ≫ Asr 1002-hx R Version-
   Cisco ≫ Asr 1002-x Version-
   Cisco ≫ Asr 1002-x R Version-
   Cisco ≫ Asr 1004 Version-
   Cisco ≫ Asr 1006 Version-
   Cisco ≫ Asr 1006-x Version-
   Cisco ≫ Asr 1009-x Version-
   Cisco ≫ Asr 1013 Version-
   Cisco ≫ Asr 1023 Version-
   Cisco ≫ Asr 900 Version-
   Cisco ≫ Asr 9000 Version-
   Cisco ≫ Asr 9000v Version-
   Cisco ≫ Asr 9001 Version-
   Cisco ≫ Asr 9006 Version-
   Cisco ≫ Asr 901-12c-f-d Version-
   Cisco ≫ Asr 901-12c-ft-d Version-
   Cisco ≫ Asr 901-4c-f-d Version-
   Cisco ≫ Asr 901-4c-ft-d Version-
   Cisco ≫ Asr 901-6cz-f-a Version-
   Cisco ≫ Asr 901-6cz-f-d Version-
   Cisco ≫ Asr 901-6cz-fs-a Version-
   Cisco ≫ Asr 901-6cz-fs-d Version-
   Cisco ≫ Asr 901-6cz-ft-a Version-
   Cisco ≫ Asr 901-6cz-ft-d Version-
   Cisco ≫ Asr 9010 Version-
   Cisco ≫ Asr 901s-2sg-f-ah Version-
   Cisco ≫ Asr 901s-2sg-f-d Version-
   Cisco ≫ Asr 901s-3sg-f-ah Version-
   Cisco ≫ Asr 901s-3sg-f-d Version-
   Cisco ≫ Asr 901s-4sg-f-d Version-
   Cisco ≫ Asr 902 Version-
   Cisco ≫ Asr 902u Version-
   Cisco ≫ Asr 903 Version-
   Cisco ≫ Asr 907 Version-
   Cisco ≫ Asr 914 Version-
   Cisco ≫ Asr 920-10sz-pd Version-
   Cisco ≫ Asr 920-10sz-pd R Version-
   Cisco ≫ Asr 920-10sz-pd Router Version-
   Cisco ≫ Asr 920-12cz-a Version-
   Cisco ≫ Asr 920-12cz-a R Version-
   Cisco ≫ Asr 920-12cz-a Router Version-
   Cisco ≫ Asr 920-12cz-d Version-
   Cisco ≫ Asr 920-12cz-d R Version-
   Cisco ≫ Asr 920-12cz-d Router Version-
   Cisco ≫ Asr 920-12sz-im Version-
   Cisco ≫ Asr 920-12sz-im R Version-
   Cisco ≫ Asr 920-12sz-im Router Version-
   Cisco ≫ Asr 920-24sz-im Version-
   Cisco ≫ Asr 920-24sz-im R Version-
   Cisco ≫ Asr 920-24sz-im Router Version-
   Cisco ≫ Asr 920-24sz-m Version-
   Cisco ≫ Asr 920-24sz-m R Version-
   Cisco ≫ Asr 920-24sz-m Router Version-
   Cisco ≫ Asr 920-24tz-m Version-
   Cisco ≫ Asr 920-24tz-m R Version-
   Cisco ≫ Asr 920-24tz-m Router Version-
   Cisco ≫ Asr 920-4sz-a Version-
   Cisco ≫ Asr 920-4sz-a R Version-
   Cisco ≫ Asr 920-4sz-a Router Version-
   Cisco ≫ Asr 920-4sz-d Version-
   Cisco ≫ Asr 920-4sz-d R Version-
   Cisco ≫ Asr 920-4sz-d Router Version-
   Cisco ≫ Asr 920u-12sz-im Version-
   Cisco ≫ Asr 9901 Version-
   Cisco ≫ Asr 9902 Version-
   Cisco ≫ Asr 9903 Version-
   Cisco ≫ Asr 9904 Version-
   Cisco ≫ Asr 9906 Version-
   Cisco ≫ Asr 9910 Version-
   Cisco ≫ Asr 9912 Version-
   Cisco ≫ Asr 9920 Version-
   Cisco ≫ Asr 9922 Version-
   Cisco ≫ Catalyst 3650 Version-
   Cisco ≫ Catalyst 3650-12x48fd-e Version-
   Cisco ≫ Catalyst 3650-12x48fd-l Version-
   Cisco ≫ Catalyst 3650-12x48fd-s Version-
   Cisco ≫ Catalyst 3650-12x48uq Version-
   Cisco ≫ Catalyst 3650-12x48uq-e Version-
   Cisco ≫ Catalyst 3650-12x48uq-l Version-
   Cisco ≫ Catalyst 3650-12x48uq-s Version-
   Cisco ≫ Catalyst 3650-12x48ur Version-
   Cisco ≫ Catalyst 3650-12x48ur-e Version-
   Cisco ≫ Catalyst 3650-12x48ur-l Version-
   Cisco ≫ Catalyst 3650-12x48ur-s Version-
   Cisco ≫ Catalyst 3650-12x48uz Version-
   Cisco ≫ Catalyst 3650-12x48uz-e Version-
   Cisco ≫ Catalyst 3650-12x48uz-l Version-
   Cisco ≫ Catalyst 3650-12x48uz-s Version-
   Cisco ≫ Catalyst 3650-24pd Version-
   Cisco ≫ Catalyst 3650-24pd-e Version-
   Cisco ≫ Catalyst 3650-24pd-l Version-
   Cisco ≫ Catalyst 3650-24pd-s Version-
   Cisco ≫ Catalyst 3650-24pdm Version-
   Cisco ≫ Catalyst 3650-24pdm-e Version-
   Cisco ≫ Catalyst 3650-24pdm-l Version-
   Cisco ≫ Catalyst 3650-24pdm-s Version-
   Cisco ≫ Catalyst 3650-24ps-e Version-
   Cisco ≫ Catalyst 3650-24ps-l Version-
   Cisco ≫ Catalyst 3650-24ps-s Version-
   Cisco ≫ Catalyst 3650-24td-e Version-
   Cisco ≫ Catalyst 3650-24td-l Version-
   Cisco ≫ Catalyst 3650-24td-s Version-
   Cisco ≫ Catalyst 3650-24ts-e Version-
   Cisco ≫ Catalyst 3650-24ts-l Version-
   Cisco ≫ Catalyst 3650-24ts-s Version-
   Cisco ≫ Catalyst 3650-48fd-e Version-
   Cisco ≫ Catalyst 3650-48fd-l Version-
   Cisco ≫ Catalyst 3650-48fd-s Version-
   Cisco ≫ Catalyst 3650-48fq Version-
   Cisco ≫ Catalyst 3650-48fq-e Version-
   Cisco ≫ Catalyst 3650-48fq-l Version-
   Cisco ≫ Catalyst 3650-48fq-s Version-
   Cisco ≫ Catalyst 3650-48fqm Version-
   Cisco ≫ Catalyst 3650-48fqm-e Version-
   Cisco ≫ Catalyst 3650-48fqm-l Version-
   Cisco ≫ Catalyst 3650-48fqm-s Version-
   Cisco ≫ Catalyst 3650-48fs-e Version-
   Cisco ≫ Catalyst 3650-48fs-l Version-
   Cisco ≫ Catalyst 3650-48fs-s Version-
   Cisco ≫ Catalyst 3650-48pd-e Version-
   Cisco ≫ Catalyst 3650-48pd-l Version-
   Cisco ≫ Catalyst 3650-48pd-s Version-
   Cisco ≫ Catalyst 3650-48pq-e Version-
   Cisco ≫ Catalyst 3650-48pq-l Version-
   Cisco ≫ Catalyst 3650-48pq-s Version-
   Cisco ≫ Catalyst 3650-48ps-e Version-
   Cisco ≫ Catalyst 3650-48ps-l Version-
   Cisco ≫ Catalyst 3650-48ps-s Version-
   Cisco ≫ Catalyst 3650-48td-e Version-
   Cisco ≫ Catalyst 3650-48td-l Version-
   Cisco ≫ Catalyst 3650-48td-s Version-
   Cisco ≫ Catalyst 3650-48tq-e Version-
   Cisco ≫ Catalyst 3650-48tq-l Version-
   Cisco ≫ Catalyst 3650-48tq-s Version-
   Cisco ≫ Catalyst 3650-48ts-e Version-
   Cisco ≫ Catalyst 3650-48ts-l Version-
   Cisco ≫ Catalyst 3650-48ts-s Version-
   Cisco ≫ Catalyst 3650-8x24pd-e Version-
   Cisco ≫ Catalyst 3650-8x24pd-l Version-
   Cisco ≫ Catalyst 3650-8x24pd-s Version-
   Cisco ≫ Catalyst 3650-8x24uq Version-
   Cisco ≫ Catalyst 3650-8x24uq-e Version-
   Cisco ≫ Catalyst 3650-8x24uq-l Version-
   Cisco ≫ Catalyst 3650-8x24uq-s Version-
   Cisco ≫ Catalyst 3850 Version-
   Cisco ≫ Catalyst 3850-12s-e Version-
   Cisco ≫ Catalyst 3850-12s-s Version-
   Cisco ≫ Catalyst 3850-12x48u Version-
   Cisco ≫ Catalyst 3850-12xs-e Version-
   Cisco ≫ Catalyst 3850-12xs-s Version-
   Cisco ≫ Catalyst 3850-16xs-e Version-
   Cisco ≫ Catalyst 3850-16xs-s Version-
   Cisco ≫ Catalyst 3850-24p-e Version-
   Cisco ≫ Catalyst 3850-24p-l Version-
   Cisco ≫ Catalyst 3850-24p-s Version-
   Cisco ≫ Catalyst 3850-24pw-s Version-
   Cisco ≫ Catalyst 3850-24s-e Version-
   Cisco ≫ Catalyst 3850-24s-s Version-
   Cisco ≫ Catalyst 3850-24t-e Version-
   Cisco ≫ Catalyst 3850-24t-l Version-
   Cisco ≫ Catalyst 3850-24t-s Version-
   Cisco ≫ Catalyst 3850-24u Version-
   Cisco ≫ Catalyst 3850-24u-e Version-
   Cisco ≫ Catalyst 3850-24u-l Version-
   Cisco ≫ Catalyst 3850-24u-s Version-
   Cisco ≫ Catalyst 3850-24xs Version-
   Cisco ≫ Catalyst 3850-24xs-e Version-
   Cisco ≫ Catalyst 3850-24xs-s Version-
   Cisco ≫ Catalyst 3850-24xu Version-
   Cisco ≫ Catalyst 3850-24xu-e Version-
   Cisco ≫ Catalyst 3850-24xu-l Version-
   Cisco ≫ Catalyst 3850-24xu-s Version-
   Cisco ≫ Catalyst 3850-32xs-e Version-
   Cisco ≫ Catalyst 3850-32xs-s Version-
   Cisco ≫ Catalyst 3850-48f-e Version-
   Cisco ≫ Catalyst 3850-48f-l Version-
   Cisco ≫ Catalyst 3850-48f-s Version-
   Cisco ≫ Catalyst 3850-48p-e Version-
   Cisco ≫ Catalyst 3850-48p-l Version-
   Cisco ≫ Catalyst 3850-48p-s Version-
   Cisco ≫ Catalyst 3850-48pw-s Version-
   Cisco ≫ Catalyst 3850-48t-e Version-
   Cisco ≫ Catalyst 3850-48t-l Version-
   Cisco ≫ Catalyst 3850-48t-s Version-
   Cisco ≫ Catalyst 3850-48u Version-
   Cisco ≫ Catalyst 3850-48u-e Version-
   Cisco ≫ Catalyst 3850-48u-l Version-
   Cisco ≫ Catalyst 3850-48u-s Version-
   Cisco ≫ Catalyst 3850-48xs Version-
   Cisco ≫ Catalyst 3850-48xs-e Version-
   Cisco ≫ Catalyst 3850-48xs-f-e Version-
   Cisco ≫ Catalyst 3850-48xs-f-s Version-
   Cisco ≫ Catalyst 3850-48xs-s Version-
   Cisco ≫ Catalyst 3850-nm-2-40g Version-
   Cisco ≫ Catalyst 3850-nm-8-10g Version-

03.03.2022: CISA Known Exploited Vulnerabilities (KEV) Catalog

Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability

Schwachstelle

The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.

Beschreibung

Apply updates per vendor instructions.

Erforderliche Maßnahmen

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	24.94%	0.96

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	9.8	3.9	5.9	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvd@nist.gov	10	10	10	AV:N/AC:L/Au:N/C:C/I:C/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://www.securityfocus.com/bid/101034

Third Party Advisory

Broken Link

VDB Entry

http://www.securitytracker.com/id/1039445

Third Party Advisory

Broken Link

VDB Entry

https://quickview.cloudapps.cisco.com/quickview/bug/CSCsm45390

Vendor Advisory

https://quickview.cloudapps.cisco.com/quickview/bug/CSCuw77959

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-dhcp

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-12240

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-12240

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-12240

EUVD