Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-6736

Опубликовано: 17 июл. 2017
Источник: nvd
CVSS3: 8.8
CVSS3: 8.8
CVSS2: 9
EPSS Высокий

Описание

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system can be used to exploit these vulnerabilities.

The vulnerabilities are due to a buffer overflow condition in the SNMP subsystem of the affected software. The vulnerabilities affect all versions of SNMP - Versions 1, 2c, and 3. To exploit these vulnerabilities via SNMP Version 2c or earlier, the attacker must know the SNMP read-only community string for the affected system. To exploit these vulnerabilities via SNMP Version 3, the attacker must have user credentials for the affected system. A successful exploit could allow the attacker to execute arbitrary code and obt

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
Версия от 12.0 (включая) до 12.4 (включая)
cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
Версия от 15.0 (включая) до 15.6 (включая)
cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*
Версия от 2.2.0 (включая) до 3.17 (включая)

EPSS

Процентиль: 100%
0.89022
Высокий

8.8 High

CVSS3

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-119
CWE-119

Связанные уязвимости

github логотип

GHSA-7vrx-w4v5-hwph

CVSS3: 8.8
github
больше 3 лет назад

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 12.0 through 12.4 and 15.0 through 15.6 and IOS XE 2.2 through 3.17 contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system can be used to exploit these vulnerabilities. The vulnerabilities are due to a buffer overflow condition in the SNMP subsystem of the affected software. The vulnerabilities affect all versions of SNMP: Versions 1, 2c, and 3. To exploit these vulnerabilities via SNMP Version 2c or earlier, the attacker must know the SNMP read-only community string for the affected system. To exploit these vulnerabilities via SNMP Version 3, the attacker must have user credentials for the affected system. All devices that have enabled SN...

fstec логотип

BDU:2017-01724

fstec
больше 8 лет назад

Уязвимость подсистемы Simple Network Management Protocol (SNMP) операционной системы Cisco IOS, позволяющая нарушителю внедрить код или вызвать перезагрузку системы

EPSS

Процентиль: 100%
0.89022
Высокий

8.8 High

CVSS3

8.8 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-119
CWE-119