Lucene search

[email protected]CVE-2017-6729

HistoryJul 10, 2017 - 8:29 p.m.

CVE-2017-6729

2017-07-1020:29:00

NVD-CWE-noinfo

[email protected]

web.nvd.nist.gov

cisco

staros

bgp

vulnerability

asr 5000

vpc

dos

denial of service

cisco router

remote attacker

nvd

cve-2017-6729

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

61.7%

JSON

A vulnerability in the Border Gateway Protocol (BGP) processing functionality of the Cisco StarOS operating system for Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core (VPC) Software could allow an unauthenticated, remote attacker to cause the BGP process on an affected system to reload, resulting in a denial of service (DoS) condition. This vulnerability affects the following products if they are running the Cisco StarOS operating system and BGP is enabled for the system: Cisco ASR 5000 Series Routers and Cisco Virtualized Packet Core Software. More Information: CSCvc44968. Known Affected Releases: 16.4.1 19.1.0 21.1.0 21.1.M0.65824. Known Fixed Releases: 21.3.A0.65902 21.2.A0.65905 21.1.b0.66164 21.1.V0.66014 21.1.R0.65898 21.1.M0.65894 21.1.0.66030 21.1.0.

CPENameOperatorVersion
cisco:asr_5000_softwarecisco asr 5000 softwareeq16.4.1
cisco:asr_5000_softwarecisco asr 5000 softwareeq16.5.0
cisco:asr_5000_softwarecisco asr 5000 softwareeq16.5.2
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.2.0
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.2.0.59184
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.3.0
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.3.1
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.3.9.62033
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.3_base
cisco:asr_5000_softwarecisco asr 5000 softwareeq17.7.0

CPE	Name	Operator	Version
cisco:asr_5000_software	cisco asr 5000 software	eq	16.4.1
cisco:asr_5000_software	cisco asr 5000 software	eq	16.5.0
cisco:asr_5000_software	cisco asr 5000 software	eq	16.5.2
cisco:asr_5000_software	cisco asr 5000 software	eq	17.2.0
cisco:asr_5000_software	cisco asr 5000 software	eq	17.2.0.59184
cisco:asr_5000_software	cisco asr 5000 software	eq	17.3.0
cisco:asr_5000_software	cisco asr 5000 software	eq	17.3.1
cisco:asr_5000_software	cisco asr 5000 software	eq	17.3.9.62033
cisco:asr_5000_software	cisco asr 5000 software	eq	17.3_base
cisco:asr_5000_software	cisco asr 5000 software	eq	17.7.0

Rows per page:

1-10 of 521

References

www.securityfocus.com/bid/100015

www.securitytracker.com/id/1038819

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170705-staros

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7 High

AI Score

Confidence

High

5 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

0.002 Low

EPSS

Percentile

61.7%

JSON

Related for CVE-2017-6729

prion1 cvelist1 nessus1 cisco1