CVE-2017-6720

EPSS 0.44%
Published 21.09.2017 05:29:01
Last modified 20.04.2025 01:37:25
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the Secure Shell (SSH) subsystem of Cisco Small Business Managed Switches software could allow an authenticated, remote attacker to cause a reload of the affected switch, resulting in a denial of service (DoS) condition. The vulnerability is due to improper processing of SSH connections. An attacker could exploit this vulnerability by logging in to an affected switch via SSH and sending a malicious SSH message. This vulnerability affects the following Cisco products when SSH is enabled: Small Business 300 Series Managed Switches, Small Business 500 Series Stackable Managed Switches, 350 Series Managed Switches, 350X Series Stackable Managed Switches, 550X Series Stackable Managed Switches, ESW2 Series Advanced Switches. Cisco Bug IDs: CSCvb48377.

Affected products Warnungen 0 Metrics 3 CWE 1 References 5

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Sf302-08pp Firmware Version < 1.4.8.06

Cisco ≫ Sf302-08pp Version-

Cisco ≫ Sf302-08mpp Firmware Version < 1.4.8.06

Cisco ≫ Sf302-08mpp Version-

Cisco ≫ Sg300-10pp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-10pp Version-

Cisco ≫ Sg300-10mpp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-10mpp Version-

Cisco ≫ Sf300-24pp Firmware Version < 1.4.8.06

Cisco ≫ Sf300-24pp Version-

Cisco ≫ Sf300-48pp Firmware Version < 1.4.8.06

Cisco ≫ Sf300-48pp Version-

Cisco ≫ Sg300-28pp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-28pp Version-

Cisco ≫ Sf300-08 Firmware Version < 1.4.8.06

Cisco ≫ Sf300-08 Version-

Cisco ≫ Sf300-48p Firmware Version < 1.4.8.06

Cisco ≫ Sf300-48p Version-

Cisco ≫ Sg300-10mp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-10mp Version-

Cisco ≫ Sg300-10p Firmware Version < 1.4.8.06

Cisco ≫ Sg300-10p Version-

Cisco ≫ Sg300-10 Firmware Version < 1.4.8.06

Cisco ≫ Sg300-10 Version-

Cisco ≫ Sg300-28p Firmware Version < 1.4.8.06

Cisco ≫ Sg300-28p Version-

Cisco ≫ Sf300-24p Firmware Version < 1.4.8.06

Cisco ≫ Sf300-24p Version-

Cisco ≫ Sf302-08mp Firmware Version < 1.4.8.06

Cisco ≫ Sf302-08mp Version-

Cisco ≫ Sg300-28 Firmware Version < 1.4.8.06

Cisco ≫ Sg300-28 Version-

Cisco ≫ Sf300-48 Firmware Version < 1.4.8.06

Cisco ≫ Sf300-48 Version-

Cisco ≫ Sg300-20 Firmware Version < 1.4.8.06

Cisco ≫ Sg300-20 Version-

Cisco ≫ Sf302-08p Firmware Version < 1.4.8.06

Cisco ≫ Sf302-08p Version-

Cisco ≫ Sg300-52 Firmware Version < 1.4.8.06

Cisco ≫ Sg300-52 Version-

Cisco ≫ Sf300-24 Firmware Version < 1.4.8.06

Cisco ≫ Sf300-24 Version-

Cisco ≫ Sf302-08 Firmware Version < 1.4.8.06

Cisco ≫ Sf302-08 Version-

Cisco ≫ Sf300-24mp Firmware Version < 1.4.8.06

Cisco ≫ Sf300-24mp Version-

Cisco ≫ Sg300-10sfp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-10sfp Version-

Cisco ≫ Sg300-28mp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-28mp Version-

Cisco ≫ Sg300-52p Firmware Version < 1.4.8.06

Cisco ≫ Sg300-52p Version-

Cisco ≫ Sg300-52mp Firmware Version < 1.4.8.06

Cisco ≫ Sg300-52mp Version-

Cisco ≫ Sg500-28mpp Firmware Version < 1.4.8.06

Cisco ≫ Sg500-28mpp Version-

Cisco ≫ Sg500-52mp Firmware Version < 1.4.8.06

Cisco ≫ Sg500-52mp Version-

Cisco ≫ Sg500xg-8f8t Firmware Version < 1.4.8.06

Cisco ≫ Sg500xg-8f8t Version-

Cisco ≫ Sf500-24 Firmware Version < 1.4.8.06

Cisco ≫ Sf500-24 Version-

Cisco ≫ Sf500-24p Firmware Version < 1.4.8.06

Cisco ≫ Sf500-24p Version-

Cisco ≫ Sf500-48 Firmware Version < 1.4.8.06

Cisco ≫ Sf500-48 Version-

Cisco ≫ Sf500-48p Firmware Version < 1.4.8.06

Cisco ≫ Sf500-48p Version-

Cisco ≫ Sg500-28 Firmware Version < 1.4.8.06

Cisco ≫ Sg500-28 Version-

Cisco ≫ Sg500-28p Firmware Version < 1.4.8.06

Cisco ≫ Sg500-28p Version-

Cisco ≫ Sg500-52 Firmware Version < 1.4.8.06

Cisco ≫ Sg500-52 Version-

Cisco ≫ Sg500-52p Firmware Version < 1.4.8.06

Cisco ≫ Sg500-52p Version-

Cisco ≫ Sg500x-24 Firmware Version < 1.4.8.06

Cisco ≫ Sg500x-24 Version-

Cisco ≫ Sg500x-24p Firmware Version < 1.4.8.06

Cisco ≫ Sg500x-24p Version-

Cisco ≫ Sg500x-48 Firmware Version < 1.4.8.06

Cisco ≫ Sg500x-48 Version-

Cisco ≫ Sg500x-48p Firmware Version < 1.4.8.06

Cisco ≫ Sg500x-48p Version-

Cisco ≫ Esw2-350g-52 Firmware Version < 1.4.8.06

Cisco ≫ Esw2-350g-52 Version-

Cisco ≫ Esw2-350g-52dc Firmware Version < 1.4.8.06

Cisco ≫ Esw2-350g-52dc Version-

Cisco ≫ Esw2-550x-48 Firmware Version < 1.4.8.06

Cisco ≫ Esw2-550x-48 Version-

Cisco ≫ Esw2-550x-48dc Firmware Version < 1.4.8.06

Cisco ≫ Esw2-550x-48dc Version-

Cisco ≫ Sg350-10 Firmware Version < 2.3.0.130

Cisco ≫ Sg350-10 Version-

Cisco ≫ Sg350-10p Firmware Version < 2.3.0.130

Cisco ≫ Sg350-10p Version-

Cisco ≫ Sg350-10mp Firmware Version < 2.3.0.130

Cisco ≫ Sg350-10mp Version-

Cisco ≫ Sg355-10p Firmware Version < 2.3.0.130

Cisco ≫ Sg355-10p Version-

Cisco ≫ Sg350-28 Firmware Version < 2.3.0.130

Cisco ≫ Sg350-28 Version-

Cisco ≫ Sg350-28p Firmware Version < 2.3.0.130

Cisco ≫ Sg350-28p Version-

Cisco ≫ Sg350-28mp Firmware Version < 2.3.0.130

Cisco ≫ Sg350-28mp Version-

Cisco ≫ Sf350-48 Firmware Version < 2.3.0.130

Cisco ≫ Sf350-48 Version-

Cisco ≫ Sf350-48p Firmware Version < 2.3.0.130

Cisco ≫ Sf350-48p Version-

Cisco ≫ Sf350-48mp Firmware Version < 2.3.0.130

Cisco ≫ Sf350-48mp Version-

Cisco ≫ Sg350xg-2f10 Firmware Version < 2.3.0.130

Cisco ≫ Sg350xg-2f10 Version-

Cisco ≫ Sg350xg-24f Firmware Version < 2.3.0.130

Cisco ≫ Sg350xg-24f Version-

Cisco ≫ Sg350xg-24t Firmware Version < 2.3.0.130

Cisco ≫ Sg350xg-24t Version-

Cisco ≫ Sg350xg-48t Firmware Version < 2.3.0.130

Cisco ≫ Sg350xg-48t Version-

Cisco ≫ Sg350x-24 Firmware Version < 2.3.0.130

Cisco ≫ Sg350x-24 Version-

Cisco ≫ Sg350x-24p Firmware Version < 2.3.0.130

Cisco ≫ Sg350x-24p Version-

Cisco ≫ Sg350x-24mp Firmware Version < 2.3.0.130

Cisco ≫ Sg350x-24mp Version-

Cisco ≫ Sg350x-48 Firmware Version < 2.3.0.130

Cisco ≫ Sg350x-48 Version-

Cisco ≫ Sg350x-48p Firmware Version < 2.3.0.130

Cisco ≫ Sg350x-48p Version-

Cisco ≫ Sg350x-48mp Firmware Version < 2.3.0.130

Cisco ≫ Sg350x-48mp Version-

Cisco ≫ Sx550x-16ft Firmware Version < 2.3.0.130

Cisco ≫ Sx550x-16ft Version-

Cisco ≫ Sx550x-24ft Firmware Version < 2.3.0.130

Cisco ≫ Sx550x-24ft Version-

Cisco ≫ Sx550x-12f Firmware Version < 2.3.0.130

Cisco ≫ Sx550x-12f Version-

Cisco ≫ Sx550x-24f Firmware Version < 2.3.0.130

Cisco ≫ Sx550x-24f Version-

Cisco ≫ Sx550x-24 Firmware Version < 2.3.0.130

Cisco ≫ Sx550x-24 Version-

Cisco ≫ Sx550x-52 Firmware Version < 2.3.0.130

Cisco ≫ Sx550x-52 Version-

Cisco ≫ Sg550x-24 Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-24 Version-

Cisco ≫ Sg550x-24p Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-24p Version-

Cisco ≫ Sg550x-24mp Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-24mp Version-

Cisco ≫ Sg550x-24mpp Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-24mpp Version-

Cisco ≫ Sg550x-48 Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-48 Version-

Cisco ≫ Sg550x-48p Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-48p Version-

Cisco ≫ Sg550x-48mp Firmware Version < 2.3.0.130

Cisco ≫ Sg550x-48mp Version-

Cisco ≫ Sf550x-24 Firmware Version < 2.3.0.130

Cisco ≫ Sf550x-24 Version-

Cisco ≫ Sf550x-24p Firmware Version < 2.3.0.130

Cisco ≫ Sf550x-24p Version-

Cisco ≫ Sf550x-24mp Firmware Version < 2.3.0.130

Cisco ≫ Sf550x-24mp Version-

Cisco ≫ Sf550x-48 Firmware Version < 2.3.0.130

Cisco ≫ Sf550x-48 Version-

Cisco ≫ Sf550x-48p Firmware Version < 2.3.0.130

Cisco ≫ Sf550x-48p Version-

Cisco ≫ Sf550x-48mp Firmware Version < 2.3.0.130

Cisco ≫ Sf550x-48mp Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.44%	0.6

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	2.8	3.6	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	6.8	8	6.9	AV:N/AC:L/Au:S/C:N/I:N/A:C

CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

http://www.securityfocus.com/bid/100933

Third Party Advisory

VDB Entry

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170920-sbms

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-6720

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-6720

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-6720

EUVD