Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-6729

A vulnerability in the Border Gateway Protocol (BGP) processing functionality of the Cisco StarOS operating system for Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core (VPC) Software could allow an unauthenticated, remote attacker to cause the BGP process on an affected system to reload, resulting in a denial of service (DoS) condition. This vulnerability affects the following products if they are running the Cisco StarOS operating system and BGP is enabled for the system: Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core Software. More Information: CSCvc44968. Known Affected Releases: 16.4.1 19.1.0 21.1.0 21.1.M0.65824. Known Fixed Releases: 21.3.A0.65902 21.2.A0.65905 21.1.b0.66164 21.1.V0.66014 21.1.R0.65898 21.1.M0.65894 21.1.0.66030 21.1.0.

Published

2017-07-10T20:29:00.547

Last Modified

2025-04-20T01:37:25.860

Status

Deferred

Source

[email protected]

Severity

CVSSv3.0: 7.5 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Primary
    NVD-CWE-noinfo
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Application cisco asr_5000_software 16.4.1 Yes
Application cisco asr_5000_software 16.5.0 Yes
Application cisco asr_5000_software 16.5.2 Yes
Application cisco asr_5000_software 17.2.0 Yes
Application cisco asr_5000_software 17.2.0.59184 Yes
Application cisco asr_5000_software 17.3.0 Yes
Application cisco asr_5000_software 17.3.1 Yes
Application cisco asr_5000_software 17.3.9.62033 Yes
Application cisco asr_5000_software 17.3_base Yes
Application cisco asr_5000_software 17.7.0 Yes
Application cisco asr_5000_software 17.7.5 Yes
Application cisco asr_5000_software 18.0.0 Yes
Application cisco asr_5000_software 18.0.0.57828 Yes
Application cisco asr_5000_software 18.0.0.59167 Yes
Application cisco asr_5000_software 18.0.0.59211 Yes
Application cisco asr_5000_software 18.0.l0.59219 Yes
Application cisco asr_5000_software 18.1.0 Yes
Application cisco asr_5000_software 18.1.0.59776 Yes
Application cisco asr_5000_software 18.1.0.59780 Yes
Application cisco asr_5000_software 18.1_base Yes
Application cisco asr_5000_software 18.3.0 Yes
Application cisco asr_5000_software 18.3_base Yes
Application cisco asr_5000_software 18.4.0 Yes
Application cisco asr_5000_software 19.0.1 Yes
Application cisco asr_5000_software 19.0.m0.60737 Yes
Application cisco asr_5000_software 19.0.m0.60828 Yes
Application cisco asr_5000_software 19.0.m0.61045 Yes
Application cisco asr_5000_software 19.1.0 Yes
Application cisco asr_5000_software 19.1.0.61559 Yes
Application cisco asr_5000_software 19.2.0 Yes
Application cisco asr_5000_software 19.3.0 Yes
Application cisco asr_5000_software 19.6.3 Yes
Application cisco asr_5000_software 19.6_base Yes
Application cisco asr_5000_software 20.0.0 Yes
Application cisco asr_5000_software 20.0.1.0 Yes
Application cisco asr_5000_software 20.0.1.a0 Yes
Application cisco asr_5000_software 20.0.1.v0 Yes
Application cisco asr_5000_software 20.0.2.3 Yes
Application cisco asr_5000_software 20.0.2.3.65026 Yes
Application cisco asr_5000_software 20.0.2.v1 Yes
Application cisco asr_5000_software 20.0.m0.62842 Yes
Application cisco asr_5000_software 20.0.m0.63229 Yes
Application cisco asr_5000_software 20.0.v0 Yes
Application cisco asr_5000_software 20.1.v2 Yes
Application cisco asr_5000_software 20.1_base Yes
Application cisco asr_5000_software 20.2.12 Yes
Application cisco asr_5000_software 20.2_base Yes
Application cisco asr_5000_software 21.0.0 Yes
Application cisco asr_5000_software 21.0.v1 Yes
Application cisco asr_5000_software 21.0_base Yes
Application cisco asr_5000_software 21.0_m0.64246 Yes
Application cisco asr_5000_software 21.0_m0.64702 Yes
Hardware cisco asr_5000 - No
References