CVE-2017-12234

Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of crafted CIP packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted CIP packets to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc43709.

CVSS v3.0 7.5 HIGH
CVSS v2.0 7.8 HIGH

7.5^/10

CVSS v3.0 : HIGH

V3 Legend

Vector :

Exploitability : 3.9 / Impact : 3.6

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

7.8^/10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:N/I:N/A:C

Exploitability : 10.0 / Impact : 6.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

References

Link	Resource
http://www.securityfocus.com/bid/101038	Broken Link Third Party Advisory VDB Entry
http://www.securityfocus.com/bid/101038	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039459	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1039459	Broken Link Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cip	Vendor Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cip	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*

OR	cpe:2.3:h:cisco:1000_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4g\/6g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-4p:-:::::::*
	cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-8p:-:::::::*
	cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100-lte_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1100_terminal_services_gateways:-:::::::*
	cpe:2.3:h:cisco:1101-4p:-:::::::*
	cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1109-2p:-:::::::*
	cpe:2.3:h:cisco:1109-4p:-:::::::*
	cpe:2.3:h:cisco:1111-4pwe:-:::::::*
	cpe:2.3:h:cisco:1111-8pwb:-:::::::*
	cpe:2.3:h:cisco:1111x-8p:-:::::::*
	cpe:2.3:h:cisco:1113-8plteeawe:-:::::::*
	cpe:2.3:h:cisco:1113-8pmwe:-:::::::*
	cpe:2.3:h:cisco:1113-8pwe:-:::::::*
	cpe:2.3:h:cisco:1116-4plteeawe:-:::::::*
	cpe:2.3:h:cisco:1116-4pwe:-:::::::*
	cpe:2.3:h:cisco:1117-4plteeawe:-:::::::*
	cpe:2.3:h:cisco:1117-4pmlteeawe:-:::::::*
	cpe:2.3:h:cisco:1117-4pmwe:-:::::::*
	cpe:2.3:h:cisco:1117-4pwe:-:::::::*
	cpe:2.3:h:cisco:1120:-:::::::*
	cpe:2.3:h:cisco:1120_connected_grid_router:-:::::::*
	cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1801_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1802_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1803_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1811_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1812_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1841_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1861_integrated_service_router:-:::::::*
	cpe:2.3:h:cisco:1905_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1906c_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1921_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1941_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:1941w_integrated_services_router:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3200_rugged_switch:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3300_rugged_switch:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3400_heavy_duty_switch:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie3400_rugged_switch:-:::::::*
	cpe:2.3:h:cisco:catalyst_ie9300:-:::::::*
	cpe:2.3:h:cisco:esr-6300-con-k9:-:::::::*
	cpe:2.3:h:cisco:esr-6300-ncp-k9:-:::::::*

History

27 Jan 2025, 18:59

Type	Values Removed	Values Added
References	~~(SECTRACK) http://www.securitytracker.com/id/1039459 - Broken Link, Third Party Advisory, VDB Entry~~	() http://www.securitytracker.com/id/1039459 - Broken Link, Third Party Advisory, VDB Entry
References	~~(BID) http://www.securityfocus.com/bid/101038 - Broken Link, Third Party Advisory, VDB Entry~~	() http://www.securityfocus.com/bid/101038 - Broken Link, Third Party Advisory, VDB Entry
References	~~(CONFIRM) https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cip - Vendor Advisory~~	() https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cip - Vendor Advisory

16 Jul 2024, 17:28

Type	Values Removed	Values Added
CWE	~~CWE-20~~	NVD-CWE-noinfo
First Time		Cisco catalyst Ie3400 Rugged Switch Cisco 1100-8p Cisco 1100-8p Integrated Services Router Cisco catalyst Ie3400 Heavy Duty Switch Cisco 1113-8pwe Cisco 1120 Cisco 1117-4plteeawe Cisco 1100-lte Integrated Services Router Cisco catalyst Ie9300 Cisco 1100-4g\/6g Integrated Services Router Cisco 1100-4g Integrated Services Router Cisco 1160 Integrated Services Router Cisco 1113-8pmwe Cisco 1100 Terminal Services Gateways Cisco 1101-4p Integrated Services Router Cisco 1000 Integrated Services Router Cisco 1921 Integrated Services Router Cisco 1812 Integrated Service Router Cisco esr-6300-ncp-k9 Cisco 1117-4pwe Cisco 1109-4p Cisco 1803 Integrated Service Router Cisco 1905 Integrated Services Router Cisco esr-6300-con-k9 Cisco 1117-4pmwe Cisco 1811 Integrated Service Router Cisco 1941 Integrated Services Router Cisco 1100 Integrated Services Router Cisco 1113-8plteeawe Cisco 1100-4p Integrated Services Router Cisco 1841 Integrated Service Router Cisco 1117-4pmlteeawe Cisco 1861 Integrated Service Router Cisco 1131 Integrated Services Router Cisco 1100-4gltena Integrated Services Router Cisco 1120 Connected Grid Router Cisco 1941w Integrated Services Router Cisco 1100-6g Integrated Services Router Cisco 1100-4gltegb Integrated Services Router Cisco 1101 Integrated Services Router Cisco 1100-4p Cisco 1111-8pwb Cisco catalyst Ie3300 Rugged Switch Cisco 1111x-8p Cisco 1109-2p Cisco 1116-4pwe Cisco 1116-4plteeawe Cisco 1802 Integrated Service Router Cisco 1801 Integrated Service Router Cisco catalyst Ie3200 Rugged Switch Cisco 1906c Integrated Services Router Cisco 1101-4p Cisco 1120 Integrated Services Router Cisco 1111-4pwe
References	~~(BID) http://www.securityfocus.com/bid/101038 - Third Party Advisory, VDB Entry~~	(BID) http://www.securityfocus.com/bid/101038 - Broken Link, Third Party Advisory, VDB Entry
References	~~(SECTRACK) http://www.securitytracker.com/id/1039459 - Third Party Advisory, VDB Entry~~	(SECTRACK) http://www.securitytracker.com/id/1039459 - Broken Link, Third Party Advisory, VDB Entry
CPE	cpe:2.3:o:cisco:ios:12.4\(25e\)jao3a:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jnc4:::::::* cpe:2.3:o:cisco:ios:15.2\(4\)ec:::::::* cpe:2.3:o:cisco:ios:15.2\(4\)ec2:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jda3:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jc7:::::::* cpe:2.3:o:cisco:ios:15.2\(3\)ex:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jpc3:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jca7:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jc51:::::::* cpe:2.3:o:cisco:ios:15.2\(2\)e5b:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jpb2:::::::* cpe:2.3:o:cisco:ios:15.6\(2\)s3:::::::* cpe:2.3:o:cisco:ios:12.4\(25e\)jap9:::::::* cpe:2.3:o:cisco:ios:15.6\(2\)s2:::::::* cpe:2.3:o:cisco:ios:15.6\(1\)s1a:::::::* cpe:2.3:o:cisco:ios:15.2\(4\)ec1:::::::* cpe:2.3:o:cisco:ios:15.6\(2\)sp1c:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jnp2:::::::* cpe:2.3:o:cisco:ios:15.2\(2\)eb:::::::* cpe:2.3:o:cisco:ios:12.4\(25e\)jao20s:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jpb:::::::* cpe:2.3:o:cisco:ios:15.1\(2\)sg7a:::::::* cpe:2.3:o:cisco:ios:15.2\(2\)eb1:::::::* cpe:2.3:o:cisco:ios:15.2\(2\)e3:::::::* cpe:2.3:o:cisco:ios:15.2\(5\)e2b:::::::* cpe:2.3:o:cisco:ios:15.6\(2\)s0a:::::::* cpe:2.3:o:cisco:ios:15.2\(5a\)e1:::::::* cpe:2.3:o:cisco:ios:12.4\(25e\)jap1n:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jbb6a:::::::* cpe:2.3:o:cisco:ios:15.2\(2\)eb2:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)je1:::::::* cpe:2.3:o:cisco:ios:15.0\(2\)sqd7:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jnd2:::::::* cpe:2.3:o:cisco:ios:15.3\(3\)jc50:::::::* cpe:2.3:o:cisco:ios:15.6\(2\)sp2a:::::::* cpe:2.3:o:cisco:ios:15.2\(5\)e:::::::* cpe:2.3:o:cisco:ios:15.2\(5\)e2a:::::::* cpe:2.3:o:cisco:ios:15.6\(2\)sp1b:::::::*	cpe:2.3:h:cisco:1841_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1801_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1941_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1120:-:::::::* cpe:2.3:h:cisco:1802_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1941w_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1111-4pwe:-:::::::* cpe:2.3:h:cisco:1812_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1100-4p:-:::::::* cpe:2.3:h:cisco:1160_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-lte_integrated_services_router:-:::::::* cpe:2.3:h:cisco:catalyst_ie9300:-:::::::* cpe:2.3:h:cisco:catalyst_ie3400_heavy_duty_switch:-:::::::* cpe:2.3:h:cisco:1803_integrated_service_router:-:::::::* cpe:2.3:h:cisco:catalyst_ie3200_rugged_switch:-:::::::* cpe:2.3:h:cisco:1120_integrated_services_router:-:::::::* cpe:2.3:o:cisco:ios:::::::: cpe:2.3:h:cisco:1906c_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1109-2p:-:::::::* cpe:2.3:h:cisco:1113-8pwe:-:::::::* cpe:2.3:h:cisco:1100_integrated_services_router:-:::::::* cpe:2.3:h:cisco:catalyst_ie3400_rugged_switch:-:::::::* cpe:2.3:h:cisco:esr-6300-con-k9:-:::::::* cpe:2.3:h:cisco:1921_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1116-4plteeawe:-:::::::* cpe:2.3:h:cisco:1117-4pwe:-:::::::* cpe:2.3:h:cisco:1116-4pwe:-:::::::* cpe:2.3:h:cisco:1117-4pmlteeawe:-:::::::* cpe:2.3:h:cisco:1120_connected_grid_router:-:::::::* cpe:2.3:h:cisco:1117-4pmwe:-:::::::* cpe:2.3:h:cisco:1000_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1811_integrated_service_router:-:::::::* cpe:2.3:h:cisco:esr-6300-ncp-k9:-:::::::* cpe:2.3:h:cisco:1100-8p:-:::::::* cpe:2.3:h:cisco:1111-8pwb:-:::::::* cpe:2.3:h:cisco:1861_integrated_service_router:-:::::::* cpe:2.3:h:cisco:1117-4plteeawe:-:::::::* cpe:2.3:h:cisco:1100-4g\/6g_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1131_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1109-4p:-:::::::* cpe:2.3:h:cisco:1113-8pmwe:-:::::::* cpe:2.3:h:cisco:1905_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1101_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1111x-8p:-:::::::* cpe:2.3:h:cisco:1113-8plteeawe:-:::::::* cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:::::::* cpe:2.3:h:cisco:1101-4p:-:::::::* cpe:2.3:h:cisco:catalyst_ie3300_rugged_switch:-:::::::* cpe:2.3:h:cisco:1100_terminal_services_gateways:-:::::::*

Information

Published : 2017-09-29 01:34

Updated : 2025-01-27 18:59

NVD link : CVE-2017-12234

Mitre link : CVE-2017-12234

JSON object : View

Products Affected

cisco

esr-6300-ncp-k9
catalyst_ie3400_heavy_duty_switch
1100-8p_integrated_services_router
1811_integrated_service_router
1905_integrated_services_router
1801_integrated_service_router
1000_integrated_services_router
esr-6300-con-k9
1100-4g_integrated_services_router
1100-8p
1803_integrated_service_router
1812_integrated_service_router
1861_integrated_service_router
1941_integrated_services_router
1100-4g\/6g_integrated_services_router
1111x-8p
1101-4p
1100-4p
1111-8pwb
catalyst_ie3200_rugged_switch
1100-lte_integrated_services_router
catalyst_ie3400_rugged_switch
1921_integrated_services_router
1111-4pwe
1113-8pwe
1117-4pwe
ios
1117-4pmlteeawe
1941w_integrated_services_router
1100-4gltegb_integrated_services_router
1116-4pwe
1101-4p_integrated_services_router
1109-2p
1100-4gltena_integrated_services_router
1120_connected_grid_router
1131_integrated_services_router
1100_terminal_services_gateways
1802_integrated_service_router
1100-4p_integrated_services_router
1113-8pmwe
1120_integrated_services_router
1101_integrated_services_router
1120
catalyst_ie3300_rugged_switch
1117-4pmwe
1113-8plteeawe
1100-6g_integrated_services_router
1906c_integrated_services_router
1100_integrated_services_router
1160_integrated_services_router
1109-4p
catalyst_ie9300
1841_integrated_service_router
1116-4plteeawe
1117-4plteeawe

CWE

NVD-CWE-noinfo

7.5 /10

Attack Vector NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

7.8 /10

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact COMPLETE

JSON object

Attach tags to CVE-2017-12234

7.5^/10

7.8^/10

Attach tags to `CVE-2017-12234`