Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-2017-6627

Published: 07/09/2017 Updated: 04/03/2024
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Ios Xe

Vulnerability Summary

A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 up to and including 3.18 could allow an unauthenticated, remote malicious user to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and a denial of service (DoS) condition. The vulnerability is due to Cisco IOS Software application changes that create UDP sockets and leave the sockets idle without closing them. An attacker could exploit this vulnerability by sending UDP packets with a destination port of 0 to an affected device. A successful exploit could allow the malicious user to cause UDP packets to be held in the input interfaces queue, resulting in a DoS condition. The input interface queue will stop holding UDP packets when it receives 250 packets. Cisco Bug IDs: CSCup10024, CSCva55744, CSCva95506.

Vulnerability Trend

Vulnerable Product Search on Vulmon Subscribe to Product

cisco ios xe 3.14.4s

cisco ios xe 3.15.1cs

cisco ios 15.2\\(2\\)gc

cisco ios 15.1\\(4\\)gc

cisco ios xe 3.18.2s

cisco ios 15.2\\(3r\\)gca

cisco ios xe 3.17.3s

cisco ios xe 3.16.0s

cisco ios xe 3.14.1s

cisco ios 15.4\\(3\\)m2

cisco ios 15.4\\(2\\)t1

cisco ios 15.4\\(1\\)t2

cisco ios xe 3.16.4s

cisco ios 15.1\\(2\\)gc2

cisco ios 15.1\\(4\\)gc2

cisco ios 15.1\\(2\\)gc

cisco ios xe 3.17.1as

cisco ios 15.2\\(4\\)gc1

cisco ios 15.4\\(2\\)t2

cisco ios xe 3.18.3s

cisco ios xe 3.18.0as

cisco ios xe 3.16.2s

cisco ios xe 3.16.0cs

cisco ios 15.4\\(3\\)m3

cisco ios xe 3.15.0s

cisco ios xe 3.14.3s

cisco ios xe 3.18.3vs

cisco ios 15.2\\(4\\)gc

cisco ios 15.2\\(4\\)gc3

cisco ios xe 3.15.3s

cisco ios 15.4\\(1\\)t3

cisco ios xe 3.16.6s

cisco ios xe 3.14.0s

cisco ios xe 3.16.5s

cisco ios xe 3.16.1s

cisco ios 15.2\\(1\\)gc1

cisco ios 15.4\\(3\\)m2.2

cisco ios 15.4\\(1\\)t

cisco ios 15.4\\(2\\)t

cisco ios 15.1\\(2\\)gc1

cisco ios xe 3.15.1s

cisco ios 15.4\\(1\\)t1

cisco ios 15.2\\(3\\)gc1

cisco ios xe 3.18.0s

cisco ios 15.1\\(4\\)gc1

cisco ios 15.4\\(3\\)m5

cisco ios 15.4\\(3\\)m4

cisco ios xe 3.17.0s

cisco ios xe 3.16.4ds

cisco ios xe 3.16.3s

cisco ios xe 3.17.1s

cisco ios 15.2\\(1\\)gc

cisco ios xe 3.15.2s

cisco ios xe 3.14.2s

cisco ios xe 3.15.4s

cisco ios xe 3.16.2bs

cisco ios xe 3.16.1as

cisco ios xe 3.18.1s

cisco ios xe 3.16.3as

cisco ios xe 3.16.4as

cisco ios xe 3.16.4bs

cisco ios 15.4\\(3\\)m1

cisco ios 15.4\\(1\\)t4

cisco ios 15.4\\(3\\)m6a

cisco ios 15.2\\(4\\)gc2

cisco ios 15.2\\(3\\)gc

cisco ios 15.4\\(3\\)m6

cisco ios 15.4\\(3\\)m

cisco ios xe 3.16.2as

cisco ios 15.4\\(3\\)m7

cisco ios 15.2\\(1\\)gc2

Vendor Advisories

Cisco: Cisco IOS and Cisco IOS XE Software UDP Packet Processing Denial of Service Vulnerability
A vulnerability in the UDP processing code of Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and a denial of service (DoS) condition The vulnerability is due to Cisco IOS Software application changes that creat ...

References

CWE-404https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170906-ios-udphttp://www.securitytracker.com/id/1039289http://www.securityfocus.com/bid/100644https://nvd.nist.govhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170906-ios-udp
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22460CVE-2024-4646CVE-2024-29212IMAPCVE-2023-36672CVE-2024-34547command injectionCVE-2024-4651stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook