Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-12232

A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a misclassification of Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc03809.

Security Impact Summary

This vulnerability carries a MEDIUM severity rating with a CVSS v3.1 score of 6.5, indicating it requires adjacent network access with relatively low complexity without requiring user interaction and does not require pre-existing privileges . The vulnerability impacts and availability (service disruption) for affected systems. Impacting 130 products from cisco, from cisco, from cisco and 127 others, organizations running these solutions should prioritize assessment and patching.

Historical Context

First disclosed in 2017, this vulnerability was reported during a period defined by widespread IoT adoption challenges, mobile security concerns, and the emergence of advanced persistent threat (APT) techniques. Contemporary mitigation strategies focused on secure development practices and third-party component vetting.

Published

2017-09-29T01:34:48.780

Last Modified

2026-01-12T22:15:59.793

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 6.5 (MEDIUM)

CVSSv2 Vector

AV:A/AC:L/Au:N/C:N/I:N/A:C

Access Vector: ADJACENT_NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: NONE
Integrity Impact: NONE
Availability Impact: COMPLETE

Exploitability Score

6.5

Impact Score

6.9

Weaknesses

Type: Secondary
CWE-399
Type: Primary
NVD-CWE-noinfo

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	ios	≤ 15.6	Yes
Hardware	cisco	1000_integrated_services_router	-	No
Hardware	cisco	1100-4g\/6g_integrated_services_router	-	No
Hardware	cisco	1100-4g_integrated_services_router	-	No
Hardware	cisco	1100-4gltegb_integrated_services_router	-	No
Hardware	cisco	1100-4gltena_integrated_services_router	-	No
Hardware	cisco	1100-8p_integrated_services_router	-	No
Hardware	cisco	1100-lte_integrated_services_router	-	No
Hardware	cisco	1100_integrated_services_router	-	No
Hardware	cisco	1101-4p_integrated_services_router	-	No
Hardware	cisco	1101_integrated_services_router	-	No
Hardware	cisco	1109-2p_integrated_services_router	-	No
Hardware	cisco	1109-4p_integrated_services_router	-	No
Hardware	cisco	1109_integrated_services_router	-	No
Hardware	cisco	1111x-8p_integrated_services_router	-	No
Hardware	cisco	1111x_integrated_services_router	-	No
Hardware	cisco	111x_integrated_services_router	-	No
Hardware	cisco	1120_integrated_services_router	-	No
Hardware	cisco	1131_integrated_services_router	-	No
Hardware	cisco	1160_integrated_services_router	-	No
Hardware	cisco	1801_integrated_service_router	-	No
Hardware	cisco	1802_integrated_service_router	-	No
Hardware	cisco	1803_integrated_service_router	-	No
Hardware	cisco	1811_integrated_service_router	-	No
Hardware	cisco	1812_integrated_service_router	-	No
Hardware	cisco	1841_integrated_service_router	-	No
Hardware	cisco	1861_integrated_service_router	-	No
Hardware	cisco	1905_integrated_services_router	-	No
Hardware	cisco	1906c_integrated_services_router	-	No
Hardware	cisco	1921_integrated_services_router	-	No
Hardware	cisco	1941_integrated_services_router	-	No
Hardware	cisco	1941w_integrated_services_router	-	No
Hardware	cisco	4000_integrated_services_router	-	No
Hardware	cisco	422_integrated_services_router	-	No
Hardware	cisco	4221_integrated_services_router	-	No
Hardware	cisco	4321\/k9-rf_integrated_services_router	-	No
Hardware	cisco	4321\/k9-ws_integrated_services_router	-	No
Hardware	cisco	4321\/k9_integrated_services_router	-	No
Hardware	cisco	4321_integrated_services_router	-	No
Hardware	cisco	4331\/k9-rf_integrated_services_router	-	No
Hardware	cisco	4331\/k9-ws_integrated_services_router	-	No
Hardware	cisco	4331\/k9_integrated_services_router	-	No
Hardware	cisco	4331_integrated_services_router	-	No
Hardware	cisco	4351\/k9-rf_integrated_services_router	-	No
Hardware	cisco	4351\/k9-ws_integrated_services_router	-	No
Hardware	cisco	4351\/k9_integrated_services_router	-	No
Hardware	cisco	4351_integrated_services_router	-	No
Hardware	cisco	4431_integrated_services_router	-	No
Hardware	cisco	44461_integrated_services_router	-	No
Hardware	cisco	4451-x_integrated_services_router	-	No
Hardware	cisco	4451_integrated_services_router	-	No
Hardware	cisco	4461_integrated_services_router	-	No
Hardware	cisco	829_industrial_integrated_services_router	-	No
Hardware	cisco	829_industrial_integrated_services_routers	-	No
Hardware	cisco	829_integrated_services_router	-	No
Hardware	cisco	860vae-w_integrated_services_router	-	No
Hardware	cisco	861_integrated_services_router	-	No
Hardware	cisco	861w_integrated_services_router	-	No
Hardware	cisco	866vae_integrated_services_router	-	No
Hardware	cisco	867_integrated_services_router	-	No
Hardware	cisco	867vae_integrated_services_router	-	No
Hardware	cisco	871_integrated_services_router	-	No
Hardware	cisco	880-voice_integrated_services_router	-	No
Hardware	cisco	880_3g_integrated_services_router	-	No
Hardware	cisco	881-cube_integrated_services_router	-	No
Hardware	cisco	881_3g_integrated_services_router	-	No
Hardware	cisco	881_integrated_services_router	-	No
Hardware	cisco	881w_integrated_services_router	-	No
Hardware	cisco	886_integrated_services_router	-	No
Hardware	cisco	886va-cube_integrated_services_router	-	No
Hardware	cisco	886va-w_integrated_services_router	-	No
Hardware	cisco	886va_integrated_services_router	-	No
Hardware	cisco	886vag_3g_integrated_services_router	-	No
Hardware	cisco	887_integrated_services_router	-	No
Hardware	cisco	887v_integrated_services_router	-	No
Hardware	cisco	887va-cube_integrated_services_router	-	No
Hardware	cisco	887va-w_integrated_services_router	-	No
Hardware	cisco	887va_integrated_services_router	-	No
Hardware	cisco	887vag_3g_integrated_services_router	-	No
Hardware	cisco	887vam-w_integrated_services_router	-	No
Hardware	cisco	887vamg_3g_integrated_services_router	-	No
Hardware	cisco	888-cube_integrated_services_router	-	No
Hardware	cisco	888_integrated_services_router	-	No
Hardware	cisco	888e-cube_integrated_services_router	-	No
Hardware	cisco	888e_integrated_services_router	-	No
Hardware	cisco	888eg_3g_integrated_services_router	-	No
Hardware	cisco	888w_integrated_services_router	-	No
Hardware	cisco	891-24x_integrated_services_router	-	No
Hardware	cisco	891_integrated_services_router	-	No
Hardware	cisco	891w_integrated_services_router	-	No
Hardware	cisco	892_integrated_services_router	-	No
Hardware	cisco	892f-cube_integrated_services_router	-	No
Hardware	cisco	892w_integrated_services_router	-	No
Hardware	cisco	asr_1000	-	No
Hardware	cisco	asr_1000-esp100	-	No
Hardware	cisco	asr_1000-esp100-x	-	No
Hardware	cisco	asr_1000-esp200-x	-	No
Hardware	cisco	asr_1000-x	-	No
Hardware	cisco	asr_1000_	-	No
Hardware	cisco	asr_1001	-	No
Hardware	cisco	asr_1001-hx	-	No
Hardware	cisco	asr_1001-hx_r	-	No
Hardware	cisco	asr_1001-x	-	No
Hardware	cisco	asr_1001-x_r	-	No
Hardware	cisco	asr_1002	-	No
Hardware	cisco	asr_1002-hx	-	No
Hardware	cisco	asr_1002-hx_r	-	No
Hardware	cisco	asr_1002-x	-	No
Hardware	cisco	asr_1002-x_r	-	No
Hardware	cisco	asr_1004	-	No
Hardware	cisco	asr_1006	-	No
Hardware	cisco	asr_1006-x	-	No
Hardware	cisco	asr_1009-x	-	No
Hardware	cisco	asr_1013	-	No
Hardware	cisco	asr_1023	-	No
Hardware	cisco	catalyst_8200	-	No
Hardware	cisco	catalyst_8300	-	No
Hardware	cisco	catalyst_8300-1n1s-4t2x	-	No
Hardware	cisco	catalyst_8300-1n1s-6t	-	No
Hardware	cisco	catalyst_8300-2n2s-4t2x	-	No
Hardware	cisco	catalyst_8300-2n2s-6t	-	No
Hardware	cisco	catalyst_8500	-	No
Hardware	cisco	catalyst_8500-4qc	-	No
Hardware	cisco	catalyst_8500l	-	No
Hardware	cisco	catalyst_8510csr	-	No
Hardware	cisco	catalyst_8510msr	-	No
Hardware	cisco	catalyst_8540csr	-	No
Hardware	cisco	catalyst_8540msr	-	No
Hardware	cisco	cloud_services_router_1000v	-	No
Hardware	cisco	integrated_services_virtual_router	-	No

References

http://www.securityfocus.com/bid/101044 Broken Link, Third Party Advisory, VDB Entry ([email protected])
http://www.securitytracker.com/id/1039452 Broken Link, Third Party Advisory, VDB Entry ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-rbip-dos Vendor Advisory ([email protected])
http://www.securityfocus.com/bid/101044 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1039452 Broken Link, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-rbip-dos Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12232 (134c704f-9b21-4f2e-91b3-4a467353bcc0)

How SecUtils Interprets This CVE

SecUtils normalizes and enriches National Vulnerability Database (NVD) records by standardizing vendor and product identifiers, aggregating vulnerability metadata from both NVD and MITRE sources, and providing structured context for security teams. For cisco's affected products, we extract Common Platform Enumeration (CPE) data, Common Weakness Enumeration (CWE) classifications, CVSS severity metrics, and reference data to enable rapid vulnerability prioritization and asset correlation. This record contains no exploit code, proof-of-concept instructions, or attack methodologies—only defensive intelligence necessary for patch management, risk assessment, and security operations.