Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-12233

Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of crafted CIP packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted CIP packets to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCuz95334.

Published

2017-09-29T01:34:48.827

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.1: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

6.9

Weaknesses
  • Type: Secondary
    CWE-20
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System cisco ios ≤ 15.6 Yes
Hardware cisco 1000_integrated_services_router - No
Hardware cisco 1100-4g\/6g_integrated_services_router - No
Hardware cisco 1100-4g_integrated_services_router - No
Hardware cisco 1100-4gltegb_integrated_services_router - No
Hardware cisco 1100-4gltena_integrated_services_router - No
Hardware cisco 1100-4p - No
Hardware cisco 1100-4p_integrated_services_router - No
Hardware cisco 1100-6g_integrated_services_router - No
Hardware cisco 1100-8p - No
Hardware cisco 1100-8p_integrated_services_router - No
Hardware cisco 1100-lte_integrated_services_router - No
Hardware cisco 1100_integrated_services_router - No
Hardware cisco 1100_terminal_services_gateways - No
Hardware cisco 1101-4p - No
Hardware cisco 1101-4p_integrated_services_router - No
Hardware cisco 1101_integrated_services_router - No
Hardware cisco 1109-2p - No
Hardware cisco 1109-4p - No
Hardware cisco 1111-4pwe - No
Hardware cisco 1111-8pwb - No
Hardware cisco 1111x-8p - No
Hardware cisco 1113-8plteeawe - No
Hardware cisco 1113-8pmwe - No
Hardware cisco 1113-8pwe - No
Hardware cisco 1116-4plteeawe - No
Hardware cisco 1116-4pwe - No
Hardware cisco 1117-4plteeawe - No
Hardware cisco 1117-4pmlteeawe - No
Hardware cisco 1117-4pmwe - No
Hardware cisco 1117-4pwe - No
Hardware cisco 1120 - No
Hardware cisco 1120_connected_grid_router - No
Hardware cisco 1120_integrated_services_router - No
Hardware cisco 1131_integrated_services_router - No
Hardware cisco 1160_integrated_services_router - No
Hardware cisco 1801_integrated_service_router - No
Hardware cisco 1802_integrated_service_router - No
Hardware cisco 1803_integrated_service_router - No
Hardware cisco 1811_integrated_service_router - No
Hardware cisco 1812_integrated_service_router - No
Hardware cisco 1841_integrated_service_router - No
Hardware cisco 1861_integrated_service_router - No
Hardware cisco 1905_integrated_services_router - No
Hardware cisco 1906c_integrated_services_router - No
Hardware cisco 1921_integrated_services_router - No
Hardware cisco 1941_integrated_services_router - No
Hardware cisco 1941w_integrated_services_router - No
Hardware cisco catalyst_ie3200_rugged_switch - No
Hardware cisco catalyst_ie3300_rugged_switch - No
Hardware cisco catalyst_ie3400_heavy_duty_switch - No
Hardware cisco catalyst_ie3400_rugged_switch - No
Hardware cisco catalyst_ie9300 - No
Hardware cisco esr-6300-con-k9 - No
Hardware cisco esr-6300-ncp-k9 - No
References