⚠ Actively exploited
Added to CISA KEV on 2022-03-03. Federal agencies required to patch by 2022-03-24. Required action: Apply updates per vendor instructions..

CVE-2017-6736Improper Restriction of Operations within the Bounds of a Memory Buffer in Cisco IOS

CWE-119Improper Restriction of Operations within the Bounds of a Memory BufferCWE-20Improper Input Validation8 documents8 sources
Severity
8.8HIGHNVD
EPSS
89.0%
top 0.47%
CISA KEV
KEV
Added 2022-03-03
Due 2022-03-24
Exploit
Exploited in wild
Active exploitation observed
Affected products
3
Cisco IOSCisco IOS XEIntellishield Universal Product
Timeline
PublishedJul 17
KEV addedMar 3
KEV dueMar 24
Latest updateMay 14
CISA Required Action: Apply updates per vendor instructions.

Description

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6. Only traffic directed to an affected system can be used to exploit these vulnerabilities. The vulnerabilities are due t

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 2.8 | Impact: 5.9

Affected Packages4 packages

NVDcisco/ios12.012.4+1
NVDcisco/ios_xe2.2.03.17
CVEListV5cisco/ios1744 versions+1743

🔴Vulnerability Details

3
GHSA
GHSA-7vrx-w4v5-hwph: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS 122022-05-14
CVEList
CVE-2017-6736: The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authent2017-07-17
VulnCheck
Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2017

💥Exploits & PoCs

1
Exploit-DB
Cisco IOS - Remote Code Execution2018-01-05

📋Vendor Advisories

3
CISA
Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability2022-03-03
Juniper
CVE-2017-2345: On Junos OS devices with SNMP enabled, a network based attacker with unfiltered access to the RE can cause the Junos OS snmpd daemon to crash and rest2017-07-17
Cisco
SNMP Remote Code Execution Vulnerabilities in Cisco IOS and IOS XE Software2017-06-29
CVE-2017-6736 — Cisco IOS vulnerability | cvebase