CVE-2017-6741

critical-risk

Published 2017-07-17

A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the affected device.  The vulnerability is due to a buffer overflow in the affected code area. The vulnerability affects all versions of SNMP (versions 1, 2c, and 3). The attacker must know the SNMP read only community string (SNMP version 2c or earlier) or the user credentials (SNMPv3). An exploit could allow the attacker to execute arbitrary code and obtain full control of the system or to cause a reload of the affected system. Only traffic directed to the affected system can be used to exploit this vulnerability.

Do I need to act?

31.9% chance of exploitation in next 30 days

EPSS score — higher than 68% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

Patch status unknown

Check vendor advisories for fix availability and mitigation guidance

CVSS 8.8/10 High

NETWORK / LOW complexity

Affected Products (20)

Ios Xe

Affected Vendors

Cisco

References (4)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/ci...

Third Party Advisory http://www.securityfocus.com/bid/99345

Third Party Advisory http://www.securitytracker.com/id/1038808

Vendor Advisory https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2...

/ 100

critical-risk

Severity 30/34 · Critical

Exploitability 16/34 · Moderate

Exposure 31/34 · Critical