CVE-2017-12219

moderate-risk

Published 2017-09-21

A vulnerability in the handling of IP fragments for the Cisco Small Business SPA300, SPA500, and SPA51x Series IP Phones could allow an unauthenticated, remote attacker to cause the device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to the inability to handle many large IP fragments for reassembly in a short duration. An attacker could exploit this vulnerability by sending a crafted stream of IP fragments to the targeted device. An exploit could allow the attacker to cause a DoS condition when the device unexpectedly reloads. Cisco Bug IDs: CSCve82586.

Do I need to act?

1.4% chance of exploitation in next 30 days

EPSS score — moderate exploit probability

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 7.5/10 High

NETWORK / LOW complexity

Affected Products (11)

Spa 303 Firmware

Spa 501G Firmware

Spa 502G Firmware

Spa 504G Firmware

Spa 509G Firmware

Spa 512G Firmware

Spa 301 Firmware

Spa 500Ds Firmware

Spa 500S Firmware

Spa 508G Firmware

Spa 514G Firmware

Affected Vendors

Cisco

References (6)

Third Party Advisory http://www.securityfocus.com/bid/100926

Third Party Advisory http://www.securitytracker.com/id/1039413

Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2...

Third Party Advisory http://www.securityfocus.com/bid/100926

Third Party Advisory http://www.securitytracker.com/id/1039413

Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2...

/ 100

moderate-risk

Severity 26/34 · High

Exploitability 4/34 · Minimal

Exposure 16/34 · Moderate