CVE-2017-6612

CWE-119 — Buffer Overflow4 documents4 sources

Severity

8.6HIGH

EPSS

0.7%

top 26.89%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco ASR 5000 Series Software

Timeline

PublishedJul 25

Latest updateMay 17

Description

A vulnerability in the gateway GPRS support node (GGSN) of Cisco ASR 5000 Series Aggregation Services Routers 17.3.9.62033 through 21.1.2 could allow an unauthenticated, remote attacker to redirect HTTP traffic sent to an affected device. More Information: CSCvc67927.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:H/A:NExploitability: 3.9 | Impact: 4.0

Affected Packages2 packages

▶CVEListV5cisco_asr_5000_series_aggregation_services_routersCisco ASR 5000 Series Aggregation Services Routers

▶NVDcisco/asr_5000_series_software7 versions+6

🔴Vulnerability Details

GHSA

GHSA-8559-f4g5-6pjj: A vulnerability in the gateway GPRS support node (GGSN) of Cisco ASR 5000 Series Aggregation Services Routers 17↗2022-05-17

▶

CVEList

CVE-2017-6612: A vulnerability in the gateway GPRS support node (GGSN) of Cisco ASR 5000 Series Aggregation Services Routers 17↗2017-07-25

▶

📋Vendor Advisories

Cisco

Cisco ASR 5000 Series Aggregation Services Routers GGSN Gateway Redirect Vulnerability↗2017-07-19

▶