Vulnerability Details CVE-2017-6603
A vulnerability in Cisco ASR 903 or ASR 920 Series Devices running with an RSP2 card could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on a targeted system because of incorrect IPv6 Packet Processing. More Information: CSCuy94366. Known Affected Releases: 15.4(3)S3.15. Known Fixed Releases: 15.6(2)SP 15.6(1.31)SP.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 45.3%
CVSS Severity
CVSS v3 Score 6.5
CVSS v2 Score 6.1
References
- http://www.securityfocus.com/bid/97450
- http://www.securitytracker.com/id/1038185
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-asr
- http://www.securityfocus.com/bid/97450
- http://www.securitytracker.com/id/1038185
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-asr
Products affected by CVE-2017-6603
-
cpe:2.3:h:cisco:asr-920-12cz-a:-
-
cpe:2.3:h:cisco:asr-920-12cz-d:-
-
cpe:2.3:h:cisco:asr-920-12sz-im:-
-
cpe:2.3:h:cisco:asr-920-24sz-im:-
-
cpe:2.3:h:cisco:asr-920-24sz-m:-
-
cpe:2.3:h:cisco:asr-920-24tz-m:-
-
cpe:2.3:h:cisco:asr-920-4sz-a:-
-
cpe:2.3:h:cisco:asr-920-4sz-d:-
-
cpe:2.3:h:cisco:asr_903:-
-
cpe:2.3:o:cisco:asr_900_series_firmware:15.4(3)s3.15