Vulnerability Details CVE-2017-3812
A vulnerability in the implementation of Common Industrial Protocol (CIP) functionality in Cisco Industrial Ethernet 2000 Series Switches could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition due to a system memory leak. More Information: CSCvc54788. Known Affected Releases: 15.2(5.4.32i)E2. Known Fixed Releases: 15.2(5.4.62i)E2.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 70.6%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 7.1
References
- http://www.securityfocus.com/bid/95946
- http://www.securitytracker.com/id/1037771
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc1
- http://www.securityfocus.com/bid/95946
- http://www.securitytracker.com/id/1037771
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-psc1
Products affected by CVE-2017-3812
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16ptc-g-e_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16ptc-g-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16ptc-g-nx_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16t67-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16t67p-g-e_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16tc-g-e_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16tc-g-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16tc-g-n_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16tc-g-x_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_16tc-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_24t67-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4s-ts-g-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4s-ts-g-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4t-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4t-g-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4t-g-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4t-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4ts-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4ts-g-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4ts-g-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_4ts-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8t67-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8t67p-g-e_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8tc-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8tc-g-b_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8tc-g-e_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8tc-g-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8tc-g-n_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_8tc-l_switch:-
-
cpe:2.3:h:cisco:industrial_ethernet_2000_series_firmware:15.2(5.4.32i)e2