var-201703-0893
Vulnerability from variot
A vulnerability in the DHCP client implementation of Cisco IOS (12.2, 12.4, and 15.0 through 15.6) and Cisco IOS XE (3.3 through 3.7) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing of a crafted DHCP packet. An attacker could exploit this vulnerability by sending crafted DHCP packets to an affected device that is configured as a DHCP client. A successful exploit could allow the attacker to cause a reload of an affected device, resulting in a DoS condition. This vulnerability affects Cisco devices that are running a vulnerable release of Cisco IOS or IOS XE Software and using a specific DHCP client configuration. Cisco Bug IDs: CSCuu43892. Vendors have confirmed this vulnerability Bug ID CSCuu43892 It is released as.Service operation interruption (DoS) An attack may be carried out.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. All the vulnerabilities have a Security Impact Rating of High.
-----BEGIN PGP SIGNATURE-----
iQKBBAEBAgBrBQJY0qJpZBxDaXNjbyBTeXN0ZW1zIFByb2R1Y3QgU2VjdXJpdHkg SW5jaWRlbnQgUmVzcG9uc2UgVGVhbSAoQ2lzY28gUFNJUlQga2V5IDIwMTYtMjAx NykgPHBzaXJ0QGNpc2NvLmNvbT4ACgkQrz2APcQAkHmgUxAAr4fO4WKcJfWEA8O5 Nlj4U9E93ThFJpZErA2ikSNaWMzgXV2j9rxnUKpQbDICOWLzqlu7AuM2Gru9xrBe chLaLYOnoBf9Z4vA3qgT00IpCFSljoV524jyQCnxPtz8O6/LvA+Cq6EBw/oWfHG7 ZXeNS8sx6BoglqFuheuc62/3buvDzi6IvsszOB44YX0cxcII1v/91VxxO03sgixp 1Mp6c3hhsIbKNjCR4jYzh9xVNgCzqKylbqmkPL4I2O4kJdG26VHXJyVa/9rlpaNx uNPn7dH1nJtxbJB7uW9V/TR4zg+l4xleIqO+JUHSbh6Hsfhu3ZxPUnoNeeeh/hq6 PGhWHwAKqg0pErGAvxY/Srai2yYXdX+qw2ywy69Af3sDDK9g3EtronFof/aEnF/5 +tpdMTyX3kuw6BJhGUvgJluNLCOxidT8FKBglWG+T2LTXTJtz1y7vv9JCNI3i506 FttEVONbDpIk4LFhaIE9uG13NifTtPxq1N3lQHUGTKrCWPWjLMJ3tUJfDclu1vG0 N8/tZvtv6paKnIC+M3tC0EBYYfzNXxfbXDipWbnWLcyA4yY0BoDedJ5cV4X8aDyw U7ZzL/GHmD91DNtgxVjUDfOhgcc7Ce0UOfeaVvV1MzbLFMYhThIDOr74cNyN0Vlr joZYd+7JsSr+SHkmL7bWnRsNEbU= =Uk+n -----END PGP SIGNATURE-----
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201703-0893",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "ios xe",
"scope": "gte",
"trust": 1.0,
"vendor": "cisco",
"version": "3.3"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.4"
},
{
"model": "ios xe",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "3.7"
},
{
"model": "ios",
"scope": "gte",
"trust": 1.0,
"vendor": "cisco",
"version": "15.0"
},
{
"model": "ios",
"scope": "lte",
"trust": 1.0,
"vendor": "cisco",
"version": "15.6"
},
{
"model": "ios",
"scope": "eq",
"trust": 1.0,
"vendor": "cisco",
"version": "12.2"
},
{
"model": "ios",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ios xe",
"scope": null,
"trust": 0.8,
"vendor": "cisco",
"version": null
},
{
"model": "ios mra jx",
"scope": "gt",
"trust": 0.6,
"vendor": "cisco",
"version": "12.2(33)\u003c12.4"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "12.4\\(24\\)mdb18"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "12.4\\(24\\)mdb7"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "12.4\\(25d\\)ja1"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "15.1\\(3\\)t3"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "12.4\\(22\\)t1"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "15.3\\(3\\)jnb"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "12.4\\(15\\)t14"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "15.6\\(2\\)t"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "15.2\\(3\\)gc"
},
{
"model": "ios",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "15.0\\(1\\)sy7"
},
{
"model": "ios xe software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
},
{
"model": "ios software",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "0"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "BID",
"id": "97012"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:12.2:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:12.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "15.6",
"versionStartIncluding": "15.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndIncluding": "3.7",
"versionStartIncluding": "3.3",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2017-3864"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco",
"sources": [
{
"db": "BID",
"id": "97012"
}
],
"trust": 0.3
},
"cve": "CVE-2017-3864",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Complete",
"baseScore": 7.8,
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2017-3864",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "High",
"trust": 0.9,
"userInteractionRequired": null,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CNVD-2017-04006",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "VHN-112067",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "HIGH",
"trust": 0.1,
"vectorString": "AV:N/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"author": "NVD",
"availabilityImpact": "HIGH",
"baseScore": 8.6,
"baseSeverity": "HIGH",
"confidentialityImpact": "NONE",
"exploitabilityScore": 3.9,
"impactScore": 4.0,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "CHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.1"
},
{
"attackComplexity": "Low",
"attackVector": "Network",
"author": "NVD",
"availabilityImpact": "High",
"baseScore": 8.6,
"baseSeverity": "High",
"confidentialityImpact": "None",
"exploitabilityScore": null,
"id": "CVE-2017-3864",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Changed",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2017-3864",
"trust": 1.8,
"value": "HIGH"
},
{
"author": "CNVD",
"id": "CNVD-2017-04006",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "CNNVD",
"id": "CNNVD-201703-987",
"trust": 0.6,
"value": "HIGH"
},
{
"author": "VULHUB",
"id": "VHN-112067",
"trust": 0.1,
"value": "HIGH"
},
{
"author": "VULMON",
"id": "CVE-2017-3864",
"trust": 0.1,
"value": "HIGH"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "VULHUB",
"id": "VHN-112067"
},
{
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A vulnerability in the DHCP client implementation of Cisco IOS (12.2, 12.4, and 15.0 through 15.6) and Cisco IOS XE (3.3 through 3.7) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing of a crafted DHCP packet. An attacker could exploit this vulnerability by sending crafted DHCP packets to an affected device that is configured as a DHCP client. A successful exploit could allow the attacker to cause a reload of an affected device, resulting in a DoS condition. This vulnerability affects Cisco devices that are running a vulnerable release of Cisco IOS or IOS XE Software and using a specific DHCP client configuration. Cisco Bug IDs: CSCuu43892. Vendors have confirmed this vulnerability Bug ID CSCuu43892 It is released as.Service operation interruption (DoS) An attack may be carried out. \n\nCisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability. All the vulnerabilities have a Security Impact Rating of High. \n\n-----BEGIN PGP SIGNATURE-----\n\niQKBBAEBAgBrBQJY0qJpZBxDaXNjbyBTeXN0ZW1zIFByb2R1Y3QgU2VjdXJpdHkg\nSW5jaWRlbnQgUmVzcG9uc2UgVGVhbSAoQ2lzY28gUFNJUlQga2V5IDIwMTYtMjAx\nNykgPHBzaXJ0QGNpc2NvLmNvbT4ACgkQrz2APcQAkHmgUxAAr4fO4WKcJfWEA8O5\nNlj4U9E93ThFJpZErA2ikSNaWMzgXV2j9rxnUKpQbDICOWLzqlu7AuM2Gru9xrBe\nchLaLYOnoBf9Z4vA3qgT00IpCFSljoV524jyQCnxPtz8O6/LvA+Cq6EBw/oWfHG7\nZXeNS8sx6BoglqFuheuc62/3buvDzi6IvsszOB44YX0cxcII1v/91VxxO03sgixp\n1Mp6c3hhsIbKNjCR4jYzh9xVNgCzqKylbqmkPL4I2O4kJdG26VHXJyVa/9rlpaNx\nuNPn7dH1nJtxbJB7uW9V/TR4zg+l4xleIqO+JUHSbh6Hsfhu3ZxPUnoNeeeh/hq6\nPGhWHwAKqg0pErGAvxY/Srai2yYXdX+qw2ywy69Af3sDDK9g3EtronFof/aEnF/5\n+tpdMTyX3kuw6BJhGUvgJluNLCOxidT8FKBglWG+T2LTXTJtz1y7vv9JCNI3i506\nFttEVONbDpIk4LFhaIE9uG13NifTtPxq1N3lQHUGTKrCWPWjLMJ3tUJfDclu1vG0\nN8/tZvtv6paKnIC+M3tC0EBYYfzNXxfbXDipWbnWLcyA4yY0BoDedJ5cV4X8aDyw\nU7ZzL/GHmD91DNtgxVjUDfOhgcc7Ce0UOfeaVvV1MzbLFMYhThIDOr74cNyN0Vlr\njoZYd+7JsSr+SHkmL7bWnRsNEbU=\n=Uk+n\n-----END PGP SIGNATURE-----\n\n",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "BID",
"id": "97012"
},
{
"db": "VULHUB",
"id": "VHN-112067"
},
{
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"db": "PACKETSTORM",
"id": "141768"
}
],
"trust": 2.7
},
"exploit_availability": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/exploit_availability#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"reference": "https://www.scap.org.cn/vuln/vhn-112067",
"trust": 0.1,
"type": "unknown"
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-112067"
}
]
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-3864",
"trust": 3.6
},
{
"db": "BID",
"id": "97012",
"trust": 2.7
},
{
"db": "SECTRACK",
"id": "1038103",
"trust": 1.8
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2017-04006",
"trust": 0.6
},
{
"db": "PACKETSTORM",
"id": "141768",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-112067",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2017-3864",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "VULHUB",
"id": "VHN-112067"
},
{
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"db": "BID",
"id": "97012"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "PACKETSTORM",
"id": "141768"
},
{
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"id": "VAR-201703-0893",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "VULHUB",
"id": "VHN-112067"
}
],
"trust": 1.3193763
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
}
]
},
"last_update_date": "2023-12-18T13:34:18.794000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20170322-dhcpc",
"trust": 0.8,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170322-dhcpc"
},
{
"title": "Patch for Cisco IOS DHCP Denial of Service Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/91538"
},
{
"title": "Cisco IOS and IOS XE Software Security vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=68698"
},
{
"title": "Threatpost",
"trust": 0.1,
"url": "https://threatpost.com/cisco-patches-critical-iox-vulnerability/124533/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "NVD-CWE-noinfo",
"trust": 1.0
},
{
"problemtype": "CWE-399",
"trust": 0.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-112067"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "NVD",
"id": "CVE-2017-3864"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.5,
"url": "http://www.securityfocus.com/bid/97012"
},
{
"trust": 2.2,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170322-dhcpc"
},
{
"trust": 1.8,
"url": "http://www.securitytracker.com/id/1038103"
},
{
"trust": 1.5,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-3864"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-3864"
},
{
"trust": 0.6,
"url": "http://seclists.org/bugtraq/2017/mar/79"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/en/us/products/sw/iosswrel/products_ios_cisco_ios_software_category_home.html"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
},
{
"trust": 0.1,
"url": "https://threatpost.com/cisco-patches-critical-iox-vulnerability/124533/"
},
{
"trust": 0.1,
"url": "http://tools.cisco.com/security/center/viewerp.x?alertid=erp-60851\"]."
},
{
"trust": 0.1,
"url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170322-dhcpc\"]"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "VULHUB",
"id": "VHN-112067"
},
{
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"db": "BID",
"id": "97012"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "PACKETSTORM",
"id": "141768"
},
{
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"db": "VULHUB",
"id": "VHN-112067"
},
{
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"db": "BID",
"id": "97012"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"db": "PACKETSTORM",
"id": "141768"
},
{
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-04-06T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"date": "2017-03-22T00:00:00",
"db": "VULHUB",
"id": "VHN-112067"
},
{
"date": "2017-03-22T00:00:00",
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"date": "2017-03-22T00:00:00",
"db": "BID",
"id": "97012"
},
{
"date": "2017-04-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"date": "2017-03-22T17:23:00",
"db": "PACKETSTORM",
"id": "141768"
},
{
"date": "2017-03-22T19:59:00.400000",
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"date": "2017-03-23T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-04-06T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-04006"
},
{
"date": "2020-09-04T00:00:00",
"db": "VULHUB",
"id": "VHN-112067"
},
{
"date": "2020-09-04T00:00:00",
"db": "VULMON",
"id": "CVE-2017-3864"
},
{
"date": "2017-03-23T00:01:00",
"db": "BID",
"id": "97012"
},
{
"date": "2017-04-26T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-002742"
},
{
"date": "2020-09-04T16:49:12.827000",
"db": "NVD",
"id": "CVE-2017-3864"
},
{
"date": "2020-10-22T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote",
"sources": [
{
"db": "PACKETSTORM",
"id": "141768"
},
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
],
"trust": 0.7
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco IOS and Cisco IOS XE of DHCP Vulnerability related to resource management in client implementation",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-002742"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "resource management error",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201703-987"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.