Published: 20/04/2017 Updated: 11/07/2017

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

CVSS v3 Base Score: 8.6 | Impact Score: 4 | Exploitability Score: 3.9

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

Multiple vulnerabilities in the EnergyWise module of Cisco IOS (12.2 and 15.0 up to and including 15.6) and Cisco IOS XE (3.2 up to and including 3.18) could allow an unauthenticated, remote malicious user to cause a buffer overflow condition or a reload of an affected device, leading to a denial of service (DoS) condition. These vulnerabilities are due to improper parsing of crafted EnergyWise packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted EnergyWise packets to be processed by an affected device. An exploit could allow the malicious user to cause a buffer overflow condition or a reload of the affected device, leading to a DoS condition. Cisco IOS Software and Cisco IOS XE Software support EnergyWise for IPv4 communication. Only IPv4 packets destined to a device configured as an EnergyWise domain member can trigger these vulnerabilities. IPv6 packets cannot be used to trigger these vulnerabilities. Cisco Bug ID CSCut47751.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco ios 15.1\\(2\\)t5
cisco ios 12.2\\(33\\)sxj10
cisco ios 15.0\\(2\\)ej1
cisco ios 15.3\\(1\\)sy2
cisco ios 12.2\\(33\\)sxj4
cisco ios 12.2\\(52\\)ey2a
cisco ios 15.1\\(1\\)t5
cisco ios 15.0\\(1\\)m6
cisco ios xe 3.3.1sq
cisco ios 15.1\\(2\\)sg4
cisco ios 15.1\\(2\\)t
cisco ios 15.0\\(2\\)ek1
cisco ios 15.0\\(2\\)sg7
cisco ios 15.5\\(1\\)t
cisco ios 12.2\\(55\\)se1
cisco ios 15.0\\(2\\)ex
cisco ios 15.1\\(1\\)sy2
cisco ios 15.2\\(2\\)eb2
cisco ios 15.0\\(1\\)xo
cisco ios 15.1\\(2\\)sy5
cisco ios 12.2\\(60\\)ez9
cisco ios 15.0\\(1\\)sy5
cisco ios 15.2\\(3\\)e1
cisco ios xe 3.2.1sg
cisco ios 15.0\\(2\\)ex5
cisco ios 12.2\\(33\\)sxi4
cisco ios 15.4\\(1\\)t4
cisco ios 15.1\\(2\\)sg3
cisco ios 12.2\\(54\\)se
cisco ios 12.2\\(55\\)se2
cisco ios 15.1\\(1\\)sy3
cisco ios 15.3\\(1\\)t4
cisco ios 15.0\\(2\\)sg6
cisco ios 15.1\\(4\\)m6
cisco ios 15.1\\(2\\)sy4
cisco ios 12.2\\(60\\)ez8
cisco ios 15.3\\(1\\)t
cisco ios 15.0\\(1\\)m7
cisco ios 12.2\\(58\\)ey1
cisco ios 15.1\\(1\\)sy6
cisco ios 15.0\\(2\\)eh
cisco ios 15.1\\(2\\)sg8
cisco ios 12.2\\(33\\)sxi12
cisco ios 15.0\\(1\\)sy4
cisco ios 15.2\\(2\\)t4
cisco ios 15.2\\(2\\)e5
cisco ios 15.2\\(2\\)e1
cisco ios 15.5\\(2\\)t4
cisco ios 15.0\\(2\\)ed
cisco ios xe 3.3.1sg
cisco ios 15.3\\(2\\)t
cisco ios 15.2\\(1\\)t3a
cisco ios 15.4\\(3\\)m4
cisco ios xe 3.6.2e
cisco ios 12.2\\(54\\)sg1
cisco ios xe 3.7.3e
cisco ios xe 3.6.1e
cisco ios 15.6\\(3\\)m1b
cisco ios xe 3.5.1e
cisco ios 12.2\\(58\\)se1
cisco ios 15.3\\(3\\)m5
cisco ios 15.1\\(4\\)m4
cisco ios 15.1\\(1\\)sg1
cisco ios 15.2\\(4\\)m6a
cisco ios 12.2\\(33\\)sxj9
cisco ios 15.4\\(3\\)m5
cisco ios 12.2\\(53\\)se1
cisco ios 15.2\\(3\\)gc
cisco ios 15.0\\(1\\)sy6
cisco ios 12.2\\(60\\)ez3
cisco ios 15.1\\(2\\)sg5
cisco ios 15.0\\(1\\)sy1
cisco ios 12.2\\(52\\)ey
cisco ios 15.1\\(4\\)m10
cisco ios 15.2\\(1\\)e2
cisco ios 15.2\\(4\\)m4
cisco ios 12.2\\(54\\)wo
cisco ios 15.1\\(3\\)t1
cisco ios 15.0\\(2\\)sg
cisco ios 15.4\\(2\\)t3
cisco ios 12.2\\(33\\)sxi6
cisco ios 12.2\\(53\\)ex
cisco ios 15.2\\(1\\)t4
cisco ios 15.0\\(2\\)se10
cisco ios 15.4\\(1\\)t1
cisco ios 15.4\\(1\\)t
cisco ios 15.2\\(4\\)m1
cisco ios 15.4\\(2\\)t1
cisco ios xe 3.4.8sg
cisco ios 15.2\\(3\\)e
cisco ios 12.2\\(55\\)se11
cisco ios 15.0\\(1\\)m5
cisco ios 15.5\\(3\\)m1
cisco ios 12.2\\(52\\)ey3
cisco ios 15.2\\(2\\)e4
cisco ios 15.1\\(2\\)sy6
cisco ios 15.0\\(2\\)se9
cisco ios 15.4\\(2\\)t4
cisco ios 15.0\\(1\\)se
cisco ios 15.0\\(2\\)sg2
cisco ios 15.1\\(3\\)t4
cisco ios 15.0\\(1\\)m10
cisco ios 15.6\\(2\\)t1
cisco ios 15.2\\(3\\)t2
cisco ios 15.4\\(2\\)cg
cisco ios 15.3\\(2\\)t2
cisco ios 15.0\\(2\\)ex8
cisco ios 15.2\\(1\\)sy2
cisco ios 15.1\\(4\\)m7
cisco ios 12.2\\(55\\)se9
cisco ios 15.2\\(4\\)gc3
cisco ios 15.4\\(3\\)m7
cisco ios 12.2\\(33\\)sxi7
cisco ios 15.2\\(1\\)t3
cisco ios 15.1\\(1\\)sy4
cisco ios 15.4\\(1\\)sy1
cisco ios 12.2\\(52\\)ex1
cisco ios 15.5\\(3\\)m2
cisco ios 15.0\\(2\\)ez
cisco ios 12.2\\(55\\)se3
cisco ios 15.3\\(2\\)t1
cisco ios xe 3.18.1sp
cisco ios 15.0\\(1\\)m8
cisco ios 12.2\\(58\\)se2
cisco ios 15.2\\(3\\)t
cisco ios xe 3.6.4e
cisco ios 12.2\\(53\\)se2
cisco ios 15.0\\(2\\)se
cisco ios 15.1\\(4\\)m1
cisco ios 15.2\\(4\\)gc2
cisco ios 12.2\\(55\\)se5
cisco ios 15.6\\(3\\)m
cisco ios 15.0\\(2\\)ex10
cisco ios 15.5\\(3\\)m5
cisco ios 12.2\\(55\\)se
cisco ios 12.2\\(33\\)sxj3
cisco ios 15.2\\(4\\)m6
cisco ios 15.0\\(1\\)sy9
cisco ios xe 3.2.8sg
cisco ios 15.3\\(3\\)m9
cisco ios 15.6\\(2\\)t
cisco ios 15.3\\(2\\)t4
cisco ios 15.2\\(2a\\)e1
cisco ios 15.1\\(2\\)gc
cisco ios 15.2\\(2\\)e
cisco ios 15.4\\(1\\)cg1
cisco ios 12.2\\(55\\)se7
cisco ios 15.2\\(4\\)gc1
cisco ios 12.2\\(52\\)ey1b
cisco ios 15.3\\(3\\)m3
cisco ios 15.2\\(2\\)eb1
cisco ios xe 3.7.2e
cisco ios 15.1\\(4\\)m3a
cisco ios 15.0\\(2\\)se7
cisco ios 15.0\\(1\\)m2
cisco ios 15.2\\(2\\)gc
cisco ios 12.2\\(53\\)se
cisco ios 12.2\\(52\\)ey3a
cisco ios 15.0\\(1\\)sy3
cisco ios 15.0\\(2\\)sg1
cisco ios 15.6\\(2\\)t2
cisco ios 12.2\\(33\\)sxi13
cisco ios 15.2\\(1\\)t2
cisco ios 15.2\\(1\\)t
cisco ios 15.3\\(3\\)m1
cisco ios 15.1\\(1\\)t
cisco ios 15.2\\(1\\)t1
cisco ios 15.1\\(2\\)sy7
cisco ios 12.2\\(52\\)ey2
cisco ios 12.2\\(33\\)sxi4a
cisco ios 15.2\\(4\\)m2
cisco ios 15.3\\(3\\)m7
cisco ios 15.0\\(2\\)ex3
cisco ios 15.0\\(1\\)m3
cisco ios 15.1\\(4\\)gc1
cisco ios 15.1\\(4\\)m2
cisco ios 15.2\\(2\\)t
cisco ios 15.3\\(1\\)t2
cisco ios 15.3\\(1\\)sy
cisco ios 15.6\\(1\\)t0a
cisco ios 15.0\\(1\\)sy8
cisco ios 15.2\\(1\\)sy
cisco ios 15.5\\(1\\)t1
cisco ios 15.6\\(1\\)t1
cisco ios 15.1\\(2\\)t2
cisco ios 15.2\\(2\\)t3
cisco ios 15.5\\(1\\)t2
cisco ios xe 3.6.2ae
cisco ios xe 3.5.3e
cisco ios 12.2\\(60\\)ez2
cisco ios 12.2\\(55\\)ex2
cisco ios 12.2\\(55\\)ex1
cisco ios 15.0\\(1\\)m9
cisco ios 15.1\\(2\\)t3
cisco ios 15.6\\(1\\)t
cisco ios xe 3.6.0e
cisco ios 15.1\\(1\\)t4
cisco ios 15.2\\(2\\)t1
cisco ios 15.0\\(2\\)se4
cisco ios 15.1\\(2\\)t4
cisco ios 15.6\\(3\\)m0a
cisco ios 12.2\\(33\\)sxj8
cisco ios 15.2\\(2\\)sy1
cisco ios 15.2\\(1\\)sy1
cisco ios 12.2\\(33\\)sxj7
cisco ios 15.0\\(1\\)sy7a
cisco ios 12.2\\(33\\)sxi8a
cisco ios 15.2\\(3\\)t4
cisco ios 15.1\\(2\\)sy
cisco ios 12.2\\(55\\)ey
cisco ios 15.2\\(4\\)gc
cisco ios 15.5\\(2\\)t
cisco ios 15.2\\(3\\)t3
cisco ios 15.0\\(2\\)ex1
cisco ios 15.2\\(1\\)gc1
cisco ios 15.2\\(4\\)m11
cisco ios 15.1\\(1\\)t2
cisco ios 15.1\\(2\\)sg7
cisco ios 12.2\\(33\\)sxi14
cisco ios 15.1\\(4\\)m8
cisco ios 15.2\\(3a\\)e
cisco ios 12.2\\(60\\)ez5
cisco ios 12.2\\(53\\)ez
cisco ios 12.2\\(33\\)sxi8
cisco ios 15.0\\(1\\)sy2
cisco ios 15.1\\(4\\)m9
cisco ios 15.2\\(2\\)e2
cisco ios 15.1\\(2\\)sy10
cisco ios 15.0\\(2\\)ek
cisco ios 12.2\\(53\\)ey
cisco ios 12.2\\(33\\)sxi9
cisco ios 15.3\\(3\\)m2
cisco ios 12.2\\(33\\)sxj
cisco ios 15.4\\(1\\)t2
cisco ios 12.2\\(33\\)sxi11
cisco ios 15.1\\(2\\)sy8
cisco ios 12.2\\(52\\)ey1
cisco ios 15.4\\(2\\)t2
cisco ios 15.0\\(1\\)se2
cisco ios 15.1\\(3\\)t2
cisco ios 15.4\\(3\\)m2
cisco ios 12.2\\(55\\)se4
cisco ios 15.1\\(1\\)sy5
cisco ios xe 3.4.6sg
cisco ios 12.2\\(33\\)sxj2
cisco ios xe 3.4.3sg
cisco ios 15.1\\(2\\)sy2
cisco ios 15.3\\(1\\)t3
cisco ios 15.1\\(2\\)sg1
cisco ios 15.2\\(3\\)e3
cisco ios 12.2\\(33\\)sxi10
cisco ios 15.0\\(2\\)ex4
cisco ios xe 3.6.5ae
cisco ios 15.4\\(1\\)t3
cisco ios 15.1\\(2\\)sy3
cisco ios 15.1\\(1\\)sg2
cisco ios 12.2\\(52\\)ex
cisco ios 15.2\\(3\\)e2
cisco ios 15.4\\(3\\)m3
cisco ios 15.1\\(2\\)sg
cisco ios 12.2\\(52\\)ey1c
cisco ios 15.2\\(1\\)gc
cisco ios 15.2\\(3\\)t1
cisco ios 15.0\\(2\\)ex2
cisco ios 15.2\\(2\\)eb
cisco ios 15.0\\(2\\)sg8
cisco ios 15.2\\(1\\)sy0a
cisco ios 12.2\\(55\\)ex
cisco ios 15.2\\(4\\)m9
cisco ios 15.0\\(2\\)se1
cisco ios 12.2\\(58\\)se
cisco ios 15.2\\(4\\)m10
cisco ios 15.1\\(1\\)t1
cisco ios 15.2\\(2\\)sy2
cisco ios 15.5\\(2\\)t3
cisco ios 15.2\\(4\\)m8
cisco ios 12.2\\(55\\)ez
cisco ios 15.1\\(2\\)t2a
cisco ios 15.5\\(3\\)m4a
cisco ios 12.2\\(33\\)sxj5
cisco ios 15.4\\(2\\)t
cisco ios 15.2\\(1\\)sy3
cisco ios 15.0\\(2\\)se3
cisco ios 15.1\\(2\\)gc2
cisco ios 15.5\\(3\\)m4
cisco ios xe 3.4.1sg
cisco ios 15.2\\(1\\)e1
cisco ios 15.0\\(2\\)xo
cisco ios 15.0\\(2\\)ed1
cisco ios 12.2\\(54\\)xo
cisco ios 15.5\\(3\\)s5
cisco ios 15.0\\(1\\)xo1
cisco ios 15.3\\(3\\)m4
cisco ios 12.2\\(60\\)ez4
cisco ios 15.1\\(2\\)sy1
cisco ios 12.2\\(55\\)ex3
cisco ios 15.1\\(3\\)t
cisco ios 15.2\\(4\\)m5
cisco ios 15.2\\(1\\)e
cisco ios 12.2\\(33\\)sxi5
cisco ios 15.1\\(4\\)m5
cisco ios 15.2\\(4\\)e
cisco ios 15.1\\(4\\)gc
cisco ios 15.5\\(1\\)t3
cisco ios 15.1\\(2\\)gc1
cisco ios 15.0\\(2\\)ej
cisco ios 15.0\\(2a\\)ex5
cisco ios 15.0\\(2\\)sg5
cisco ios xe 3.8.0e
cisco ios 15.0\\(2\\)sg3
cisco ios 15.1\\(2\\)t1
cisco ios 15.1\\(4\\)gc2
cisco ios xe 3.4.2sg
cisco ios 15.1\\(2\\)sy4a
cisco ios 12.2\\(60\\)ez6
cisco ios 12.2\\(52\\)ey4
cisco ios 15.2\\(1\\)sy1a
cisco ios 15.1\\(3\\)t3
cisco ios 12.2\\(55\\)se10
cisco ios 15.1\\(2\\)t0a
cisco ios 12.2\\(60\\)ez
cisco ios 12.2\\(60\\)ez7
cisco ios 15.2\\(3m\\)e2
cisco ios 15.1\\(2\\)sg6
cisco ios 15.0\\(1\\)m4
cisco ios 12.2\\(58\\)ey2
cisco ios 15.2\\(2\\)sy
cisco ios xe 3.6.5e
cisco ios 15.0\\(2\\)sg4
cisco ios 15.0\\(2a\\)se9
cisco ios 15.4\\(3\\)m6a
cisco ios 15.2\\(4\\)m7
cisco ios 15.4\\(1\\)sy
cisco ios 15.2\\(2\\)e5a
cisco ios 15.6\\(3\\)m1
cisco ios 15.3\\(3\\)m
cisco ios 15.4\\(1\\)cg
cisco ios 15.0\\(1\\)se3
cisco ios 12.2\\(60\\)ez1
cisco ios 15.6\\(1\\)t2
cisco ios 15.6\\(3\\)m2
cisco ios 15.0\\(2\\)se6
cisco ios 15.4\\(3\\)m6
cisco ios 15.2\\(1\\)e3
cisco ios 12.2\\(54\\)sg
cisco ios 15.2\\(4\\)m3
cisco ios 15.0\\(1\\)sy7
cisco ios 15.1\\(1\\)sy
cisco ios 15.2\\(2\\)t2
cisco ios 12.2\\(33\\)sxj1
cisco ios xe 3.7.0e
cisco ios 15.3\\(3\\)m6
cisco ios 15.1\\(2\\)sg2
cisco ios 15.0\\(2\\)se5
cisco ios 15.3\\(1\\)t1
cisco ios 15.1\\(1\\)sg
cisco ios 15.0\\(1\\)se1
cisco ios 12.2\\(58\\)ey
cisco ios 15.2\\(4\\)m
cisco ios 15.0\\(2\\)se2
cisco ios 15.3\\(2\\)t3
cisco ios 15.1\\(4\\)m
cisco ios 15.1\\(4\\)m3
cisco ios 15.5\\(3\\)m0a
cisco ios 15.4\\(3\\)m
cisco ios 12.2\\(55\\)se8
cisco ios 15.4\\(3\\)m1
cisco ios 15.5\\(2\\)t1
cisco ios 15.2\\(1\\)gc2
cisco ios 12.2\\(33\\)sxj6
cisco ios 15.2\\(3\\)gc1
cisco ios xe 3.7.1e
cisco ios 15.1\\(1\\)t3
cisco ios 12.2\\(55\\)se6
cisco ios 15.5\\(2\\)t2
cisco ios 15.0\\(1\\)sy10

Multiple vulnerabilities in the EnergyWise module of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a buffer overflow condition or a reload of an affected device, leading to a denial of service (DoS) condition These vulnerabilities are due to improper parsing of crafted EnergyWise packets destined to ...

CWE-119 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-energywise http://www.securityfocus.com/bid/97935 http://www.securitytracker.com/id/1038313 https://nvd.nist.gov https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170419-energywise

Get Started

CVE-2017-3861

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

References

Vulmon Search

About

Products

Connect