CVE-2017-3824

A vulnerability in the handling of list headers in Cisco cBR Series Converged Broadband Routers could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition. Cisco cBR-8 Converged Broadband Routers running vulnerable versions of Cisco IOS XE are affected. More Information: CSCux40637. Known Affected Releases: 15.5(3)S 15.6(1)S. Known Fixed Releases: 15.5(3)S2 15.6(1)S1 15.6(2)S 15.6(2)SP 16.4(1).

Published: Feb 3, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-3824
Severity: Medium
Exploit:

CVSS v3:

Severity: Medium
Score: 6.8
AV:N/AC:H/PR:N/UI:N/S:C/C:N/I:N/A:H

CVSS v2:

Severity: Medium
Score: 5.4
AV:N/AC:H/Au:N/C:N/I:N/A:C

CWEs:

CWE-119

Affected Software
References

Software	From	Fixed in
cisco / ios_xe	3.16.0	3.16.0.x
cisco / ios_xe	3.16.1	3.16.1.x
cisco / ios_xe	3.17.0	3.17.0.x

http://www.securityfocus.com/bid/95937
http://www.securitytracker.com/id/1037774
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170201-cbr

Vulnerability Database

290,273

CVE-2017-3824