← Back to CVEs
CVE-2017-12232
MEDIUMCISA KEV6.5
Description
A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS 15.0 through 15.6 could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to a misclassification of Ethernet frames. An attacker could exploit this vulnerability by sending a crafted Ethernet frame to an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCvc03809.
CVE Details
CVSS v3.1 Score6.5
SeverityMEDIUM
CVSS VectorCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack VectorADJACENT_NETWORK
ComplexityLOW
Privileges RequiredNONE
User InteractionNONE
Published9/29/2017
Last Modified4/22/2026
Sourcekev
Honeypot Sightings0
CISA KEV
VendorCisco
ProductIOS software
Vulnerability NameCisco IOS Software for Cisco Integrated Services Routers Denial-of-Service Vulnerability
KEV Date Added2022-03-03
Remediation Due Date2022-03-24
Ransomware UseUnknown
Affected Products
cisco:1000_integrated_services_routercisco:1100-4g\/6g_integrated_services_routercisco:1100-4g_integrated_services_routercisco:1100-4gltegb_integrated_services_routercisco:1100-4gltena_integrated_services_routercisco:1100-8p_integrated_services_routercisco:1100-lte_integrated_services_routercisco:1100_integrated_services_routercisco:1101-4p_integrated_services_routercisco:1101_integrated_services_routercisco:1109-2p_integrated_services_routercisco:1109-4p_integrated_services_routercisco:1109_integrated_services_routercisco:1111x-8p_integrated_services_routercisco:1111x_integrated_services_routercisco:111x_integrated_services_routercisco:1120_integrated_services_routercisco:1131_integrated_services_routercisco:1160_integrated_services_routercisco:1801_integrated_service_routercisco:1802_integrated_service_routercisco:1803_integrated_service_routercisco:1811_integrated_service_routercisco:1812_integrated_service_routercisco:1841_integrated_service_routercisco:1861_integrated_service_routercisco:1905_integrated_services_routercisco:1906c_integrated_services_routercisco:1921_integrated_services_routercisco:1941_integrated_services_routercisco:1941w_integrated_services_routercisco:4000_integrated_services_routercisco:4221_integrated_services_routercisco:422_integrated_services_routercisco:4321\/k9-rf_integrated_services_routercisco:4321\/k9-ws_integrated_services_routercisco:4321\/k9_integrated_services_routercisco:4321_integrated_services_routercisco:4331\/k9-rf_integrated_services_routercisco:4331\/k9-ws_integrated_services_routercisco:4331\/k9_integrated_services_routercisco:4331_integrated_services_routercisco:4351\/k9-rf_integrated_services_routercisco:4351\/k9-ws_integrated_services_routercisco:4351\/k9_integrated_services_routercisco:4351_integrated_services_routercisco:4431_integrated_services_routercisco:44461_integrated_services_routercisco:4451-x_integrated_services_routercisco:4451_integrated_services_routercisco:4461_integrated_services_routercisco:829_industrial_integrated_services_routercisco:829_industrial_integrated_services_routerscisco:829_integrated_services_routercisco:860vae-w_integrated_services_routercisco:861_integrated_services_routercisco:861w_integrated_services_routercisco:866vae_integrated_services_routercisco:867_integrated_services_routercisco:867vae_integrated_services_routercisco:871_integrated_services_routercisco:880-voice_integrated_services_routercisco:880_3g_integrated_services_routercisco:881-cube_integrated_services_routercisco:881_3g_integrated_services_routercisco:881_integrated_services_routercisco:881w_integrated_services_routercisco:886_integrated_services_routercisco:886va-cube_integrated_services_routercisco:886va-w_integrated_services_routercisco:886va_integrated_services_routercisco:886vag_3g_integrated_services_routercisco:887_integrated_services_routercisco:887v_integrated_services_routercisco:887va-cube_integrated_services_routercisco:887va-w_integrated_services_routercisco:887va_integrated_services_routercisco:887vag_3g_integrated_services_routercisco:887vam-w_integrated_services_routercisco:887vamg_3g_integrated_services_routercisco:888-cube_integrated_services_routercisco:888_integrated_services_routercisco:888e-cube_integrated_services_routercisco:888e_integrated_services_routercisco:888eg_3g_integrated_services_routercisco:888w_integrated_services_routercisco:891-24x_integrated_services_routercisco:891_integrated_services_routercisco:891w_integrated_services_routercisco:892_integrated_services_routercisco:892f-cube_integrated_services_routercisco:892w_integrated_services_routercisco:asr_1000cisco:asr_1000-esp100cisco:asr_1000-esp100-xcisco:asr_1000-esp200-xcisco:asr_1000-xcisco:asr_1000_cisco:asr_1001cisco:asr_1001-hxcisco:asr_1001-hx_rcisco:asr_1001-xcisco:asr_1001-x_rcisco:asr_1002cisco:asr_1002-hxcisco:asr_1002-hx_rcisco:asr_1002-xcisco:asr_1002-x_rcisco:asr_1004cisco:asr_1006cisco:asr_1006-xcisco:asr_1009-xcisco:asr_1013cisco:asr_1023cisco:catalyst_8200cisco:catalyst_8300cisco:catalyst_8300-1n1s-4t2xcisco:catalyst_8300-1n1s-6tcisco:catalyst_8300-2n2s-4t2xcisco:catalyst_8300-2n2s-6tcisco:catalyst_8500cisco:catalyst_8500-4qccisco:catalyst_8500lcisco:catalyst_8510csrcisco:catalyst_8510msrcisco:catalyst_8540csrcisco:catalyst_8540msrcisco:cloud_services_router_1000vcisco:integrated_services_virtual_routercisco:ios
Weaknesses (CWE)
CWE-399
References
http://www.securityfocus.com/bid/101044(psirt@cisco.com)
http://www.securitytracker.com/id/1039452(psirt@cisco.com)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-rbip-dos(psirt@cisco.com)
http://www.securityfocus.com/bid/101044(af854a3a-2127-422b-91ae-364da2661108)
http://www.securitytracker.com/id/1039452(af854a3a-2127-422b-91ae-364da2661108)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-rbip-dos(af854a3a-2127-422b-91ae-364da2661108)
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12232(134c704f-9b21-4f2e-91b3-4a467353bcc0)
IOC Correlations
No correlations recorded
This product uses data from the NVD API but is not endorsed or certified by the NVD.