Lucene search
CiscoCISCO-SA-20170726-ANICRLHistoryJul 26, 2017 - 4:00 p.m.
Cisco IOS XE Software Autonomic Networking Infrastructure Certificate Revocation Vulnerability
2017-07-2616:00:00
tools.cisco.com
21
EPSS
0.002
Percentile
59.9%
A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked.
The vulnerability exists because the affected software does not transfer certificate revocation lists (CRLs) across Autonomic Control Plane (ACP) channels. An attacker could exploit this vulnerability by connecting an autonomic node, which has a known and revoked certificate, to the autonomic domain of an affected system. A successful exploit could allow the attacker to insert a previously trusted autonomic node into the autonomic domain of an affected system after the certificate for the node has been revoked.
There are no workarounds that address this vulnerability.
This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170726-anicrl [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170726-anicrl”]
Affected configurations
Node
ciscocisco_ios_xe_softwareMatch16.1
ORciscocisco_ios_xe_softwareMatch16.2
ORciscocisco_ios_xe_softwareMatch16.3
ORciscocisco_ios_xe_softwareMatch16.4
ORciscocisco_ios_xe_softwareMatch16.5
ORciscocisco_ios_xe_softwareMatch16.6
ORciscocisco_ios_xe_softwareMatch16.7
ORciscocisco_ios_xe_softwareMatch16.8
ORciscocisco_ios_xe_softwareMatch16.9
ORciscocisco_ios_xe_softwareMatch16.10
ORciscocisco_ios_xe_softwareMatch16.11
ORciscocisco_ios_xe_softwareMatch16.12
ORciscocisco_ios_xe_softwareMatch17.1
ORciscocisco_ios_xe_softwareMatch16.1.2
ORciscocisco_ios_xe_softwareMatch16.1.3
ORciscocisco_ios_xe_softwareMatch16.2.1
ORciscocisco_ios_xe_softwareMatch16.2.2
ORciscocisco_ios_xe_softwareMatch16.3.1
ORciscocisco_ios_xe_softwareMatch16.3.2
ORciscocisco_ios_xe_softwareMatch16.3.3
ORciscocisco_ios_xe_softwareMatch16.3.1a
ORciscocisco_ios_xe_softwareMatch16.3.4
ORciscocisco_ios_xe_softwareMatch16.3.5
ORciscocisco_ios_xe_softwareMatch16.3.5b
ORciscocisco_ios_xe_softwareMatch16.3.6
ORciscocisco_ios_xe_softwareMatch16.3.7
ORciscocisco_ios_xe_softwareMatch16.3.8
ORciscocisco_ios_xe_softwareMatch16.3.9
ORciscocisco_ios_xe_softwareMatch16.3.10
ORciscocisco_ios_xe_softwareMatch16.3.11
ORciscocisco_ios_xe_softwareMatch16.4.1
ORciscocisco_ios_xe_softwareMatch16.4.2
ORciscocisco_ios_xe_softwareMatch16.4.3
ORciscocisco_ios_xe_softwareMatch16.5.1
ORciscocisco_ios_xe_softwareMatch16.5.1a
ORciscocisco_ios_xe_softwareMatch16.5.1b
ORciscocisco_ios_xe_softwareMatch16.5.2
ORciscocisco_ios_xe_softwareMatch16.5.3
ORciscocisco_ios_xe_softwareMatch16.6.1
ORciscocisco_ios_xe_softwareMatch16.6.2
ORciscocisco_ios_xe_softwareMatch16.6.3
ORciscocisco_ios_xe_softwareMatch16.6.4
ORciscocisco_ios_xe_softwareMatch16.6.5
ORciscocisco_ios_xe_softwareMatch16.6.4s
ORciscocisco_ios_xe_softwareMatch16.6.4a
ORciscocisco_ios_xe_softwareMatch16.6.5a
ORciscocisco_ios_xe_softwareMatch16.6.6
ORciscocisco_ios_xe_softwareMatch16.6.5b
ORciscocisco_ios_xe_softwareMatch16.6.7
ORciscocisco_ios_xe_softwareMatch16.6.7a
ORciscocisco_ios_xe_softwareMatch16.6.8
ORciscocisco_ios_xe_softwareMatch16.6.9
ORciscocisco_ios_xe_softwareMatch16.6.10
ORciscocisco_ios_xe_softwareMatch16.7.1
ORciscocisco_ios_xe_softwareMatch16.7.2
ORciscocisco_ios_xe_softwareMatch16.7.3
ORciscocisco_ios_xe_softwareMatch16.8.1
ORciscocisco_ios_xe_softwareMatch16.8.1a
ORciscocisco_ios_xe_softwareMatch16.8.1b
ORciscocisco_ios_xe_softwareMatch16.8.1s
ORciscocisco_ios_xe_softwareMatch16.8.1c
ORciscocisco_ios_xe_softwareMatch16.8.2
ORciscocisco_ios_xe_softwareMatch16.8.3
ORciscocisco_ios_xe_softwareMatch16.9.1
ORciscocisco_ios_xe_softwareMatch16.9.2
ORciscocisco_ios_xe_softwareMatch16.9.1a
ORciscocisco_ios_xe_softwareMatch16.9.1b
ORciscocisco_ios_xe_softwareMatch16.9.1s
ORciscocisco_ios_xe_softwareMatch16.9.3
ORciscocisco_ios_xe_softwareMatch16.9.2a
ORciscocisco_ios_xe_softwareMatch16.9.2s
ORciscocisco_ios_xe_softwareMatch16.9.3h
ORciscocisco_ios_xe_softwareMatch16.9.4
ORciscocisco_ios_xe_softwareMatch16.9.3s
ORciscocisco_ios_xe_softwareMatch16.9.3a
ORciscocisco_ios_xe_softwareMatch16.9.4c
ORciscocisco_ios_xe_softwareMatch16.9.5
ORciscocisco_ios_xe_softwareMatch16.9.5f
ORciscocisco_ios_xe_softwareMatch16.9.6
ORciscocisco_ios_xe_softwareMatch16.9.7
ORciscocisco_ios_xe_softwareMatch16.9.8
ORciscocisco_ios_xe_softwareMatch16.9.8a
ORciscocisco_ios_xe_softwareMatch16.9.8b
ORciscocisco_ios_xe_softwareMatch16.10.1
ORciscocisco_ios_xe_softwareMatch16.10.1a
ORciscocisco_ios_xe_softwareMatch16.10.1b
ORciscocisco_ios_xe_softwareMatch16.10.1s
ORciscocisco_ios_xe_softwareMatch16.10.1e
ORciscocisco_ios_xe_softwareMatch16.10.2
ORciscocisco_ios_xe_softwareMatch16.10.3
ORciscocisco_ios_xe_softwareMatch16.11.1
ORciscocisco_ios_xe_softwareMatch16.11.1a
ORciscocisco_ios_xe_softwareMatch16.11.1b
ORciscocisco_ios_xe_softwareMatch16.11.2
ORciscocisco_ios_xe_softwareMatch16.11.1s
ORciscocisco_ios_xe_softwareMatch16.11.1c
ORciscocisco_ios_xe_softwareMatch16.12.1
ORciscocisco_ios_xe_softwareMatch16.12.1s
ORciscocisco_ios_xe_softwareMatch16.12.1a
ORciscocisco_ios_xe_softwareMatch16.12.1c
ORciscocisco_ios_xe_softwareMatch16.12.2
ORciscocisco_ios_xe_softwareMatch16.12.2a
ORciscocisco_ios_xe_softwareMatch16.12.3
ORciscocisco_ios_xe_softwareMatch16.12.8
ORciscocisco_ios_xe_softwareMatch16.12.2s
ORciscocisco_ios_xe_softwareMatch16.12.1t
ORciscocisco_ios_xe_softwareMatch16.12.2t
ORciscocisco_ios_xe_softwareMatch16.12.4
ORciscocisco_ios_xe_softwareMatch16.12.3s
ORciscocisco_ios_xe_softwareMatch16.12.3a
ORciscocisco_ios_xe_softwareMatch16.12.4a
ORciscocisco_ios_xe_softwareMatch16.12.5
ORciscocisco_ios_xe_softwareMatch16.12.6
ORciscocisco_ios_xe_softwareMatch16.12.5a
ORciscocisco_ios_xe_softwareMatch16.12.5b
ORciscocisco_ios_xe_softwareMatch16.12.6a
ORciscocisco_ios_xe_softwareMatch16.12.7
ORciscocisco_ios_xe_softwareMatch16.12.9
ORciscocisco_ios_xe_softwareMatch16.12.10
ORciscocisco_ios_xe_softwareMatch16.12.10a
ORciscocisco_ios_xe_softwareMatch16.12.11
ORciscocisco_ios_xe_softwareMatch16.12.12
ORciscocisco_ios_xe_softwareMatch17.1.1
ORciscocisco_ios_xe_softwareMatch17.1.1a
ORciscocisco_ios_xe_softwareMatch17.1.1s
ORciscocisco_ios_xe_softwareMatch17.1.2
ORciscocisco_ios_xe_softwareMatch17.1.1t
ORciscocisco_ios_xe_softwareMatch17.1.3
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | cisco_ios_xe_software | 16.1 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.1:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.2 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.2:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.3 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.3:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.4 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.4:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.5 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.5:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.6 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.6:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.7 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.7:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.8 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.8:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.9 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.9:*:*:*:*:*:*:* |
| cisco | cisco_ios_xe_software | 16.10 | cpe:2.3:a:cisco:cisco_ios_xe_software:16.10:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2017-6664
2017-08-07 06:00:00
openvas
openvas
cve
cve
CVE-2017-6664
2017-08-07 06:29:00
nvd
nvd
CVE-2017-6664
2017-08-07 06:29:00
prion
prion
Code injection
2017-08-07 06:29:00
nessus
nessus