CVE-2017-6721

CWE-20 — Improper Input Validation4 documents4 sources

Severity

5.3MEDIUM

EPSS

0.8%

top 25.61%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Wide Area Application Services

Timeline

PublishedJul 4

Latest updateMay 17

Description

A vulnerability in the ingress processing of fragmented TCP packets by Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, remote attacker to cause the WAASNET process to restart unexpectedly, causing a denial of service (DoS) condition. More Information: CSCvc57428. Known Affected Releases: 6.3(1). Known Fixed Releases: 6.3(0.143) 6.2(3c)6 6.2(3.22).

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages2 packages

▶CVEListV5cisco_wide_area_application_servicesCisco Wide Area Application Services

▶NVDcisco/wide_area_application_services6.3\(1\)

🔴Vulnerability Details

GHSA

GHSA-w93q-4q5r-8jfj: A vulnerability in the ingress processing of fragmented TCP packets by Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, rem↗2022-05-17

▶

CVEList

CVE-2017-6721: A vulnerability in the ingress processing of fragmented TCP packets by Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, rem↗2017-07-04

▶

📋Vendor Advisories

Cisco

Cisco Wide Area Application Services TCP Fragment Denial of Service Vulnerability↗2017-06-21

▶