// For flags

CVE-2017-12235

Cisco IOS Software for Cisco Industrial Ethernet Switches PROFINET Denial-of-Service Vulnerability

Severity Score

7.5
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

Yes
*KEV

Decision

Act
*SSVC
Descriptions

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS 12.2 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to the improper parsing of ingress PN-DCP Identify Request packets destined to an affected device. An attacker could exploit this vulnerability by sending a crafted PN-DCP Identify Request packet to an affected device and then continuing to send normal PN-DCP Identify Request packets to the device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. This vulnerability affects Cisco devices that are configured to process PROFINET messages. Beginning with Cisco IOS Software Release 12.2(52)SE, PROFINET is enabled by default on all the base switch module and expansion-unit Ethernet ports. Cisco Bug IDs: CSCuz47179.

Una vulnerabilidad en la implementación de un PN-DCP (PROFINET Discovery and Configuration Protocol) para Cisco IOS desde la versión 12.2 hasta la 15.6 podría permitir que un atacante remoto sin autenticar haga que el dispositivo afectado se reinicie, provocando una denegación de servicio (DoS) en consecuencia. Esta vulnerabilidad se debe a un análisis sintáctico incorrecto de los paquetes PN-DCP Identify Request manipulados destinados al dispositivo afectado. Un atacante podría explotar esta vulnerabilidad enviando un paquete PN-DCP Identify Request manipulado al dispositivo afectado y luego continuando el envío de paquetes PN-DCP Identify Request normales al dispositivo. Si se explota con éxito, podría permitir que el atacante consiga que el dispositivo afectado se reinicie, provocando una denegación de servicio. Esta vulnerabilidad afecta a dispositivos Cisco que están configurados para procesar mensajes PROFINET. Empezando con la distribución 12.2(52)SE del software de Cisco IOS, PROFINET está habilitado por defecto en todos los puertos Ethernet para las unidades de expansión y los módulos de switch base. Cisco Bug IDs: CSCuz47179.

A vulnerability in the implementation of the PROFINET Discovery and Configuration Protocol (PN-DCP) for Cisco IOS could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service.

*Credits: N/A
CVSS Scores
Attack Vector
Network
Attack Complexity
Low
Privileges Required
None
User Interaction
None
Scope
Unchanged
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Network
Attack Complexity
Low
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:Act
Exploitation
Active
Automatable
Yes
Tech. Impact
Partial
* Organization's Worst-case Scenario
Timeline
  • 2017-08-03 CVE Reserved
  • 2017-09-28 CVE Published
  • 2022-03-03 Exploited in Wild
  • 2022-03-24 KEV Due Date
  • 2024-07-19 EPSS Updated
  • 2024-11-15 CVE Updated
  • ---------- First Exploit
CWE
  • CWE-20: Improper Input Validation
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(52\)se
Search vendor "Cisco" for product "Ios" and version "12.2\(52\)se"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(52\)se1
Search vendor "Cisco" for product "Ios" and version "12.2\(52\)se1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se3
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se4
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se4"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se5
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se5"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se6
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se6"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se7
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se7"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se9
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se9"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se10
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se10"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(55\)se11
Search vendor "Cisco" for product "Ios" and version "12.2\(55\)se11"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(58\)se
Search vendor "Cisco" for product "Ios" and version "12.2\(58\)se"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(58\)se1
Search vendor "Cisco" for product "Ios" and version "12.2\(58\)se1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.2\(58\)se2
Search vendor "Cisco" for product "Ios" and version "12.2\(58\)se2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.4\(25e\)jao3a
Search vendor "Cisco" for product "Ios" and version "12.4\(25e\)jao3a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.4\(25e\)jao20s
Search vendor "Cisco" for product "Ios" and version "12.4\(25e\)jao20s"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.4\(25e\)jap1n
Search vendor "Cisco" for product "Ios" and version "12.4\(25e\)jap1n"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
12.4\(25e\)jap9
Search vendor "Cisco" for product "Ios" and version "12.4\(25e\)jap9"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(1\)ey
Search vendor "Cisco" for product "Ios" and version "15.0\(1\)ey"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(1\)ey1
Search vendor "Cisco" for product "Ios" and version "15.0\(1\)ey1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(1\)ey2
Search vendor "Cisco" for product "Ios" and version "15.0\(1\)ey2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)eb
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)eb"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)ec
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)ec"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)ey
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)ey"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)ey1
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)ey1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)ey2
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)ey2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)ey3
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)ey3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se1
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se2
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se3
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se4
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se4"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se5
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se5"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se6
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se6"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se7
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se7"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se8
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se8"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se9
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se9"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se10
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se10"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)se10a
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)se10a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.0\(2\)sqd7
Search vendor "Cisco" for product "Ios" and version "15.0\(2\)sqd7"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.1\(2\)sg7a
Search vendor "Cisco" for product "Ios" and version "15.1\(2\)sg7a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.1\(2\)sg9
Search vendor "Cisco" for product "Ios" and version "15.1\(2\)sg9"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(1\)ey
Search vendor "Cisco" for product "Ios" and version "15.2\(1\)ey"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e1
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e2
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e3
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e4
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e4"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e5
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e5"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e5a
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e5a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e5b
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e5b"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)e6
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)e6"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)eb
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)eb"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)eb1
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)eb1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2\)eb2
Search vendor "Cisco" for product "Ios" and version "15.2\(2\)eb2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(2a\)e2
Search vendor "Cisco" for product "Ios" and version "15.2\(2a\)e2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(3\)e1
Search vendor "Cisco" for product "Ios" and version "15.2\(3\)e1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(3\)e2
Search vendor "Cisco" for product "Ios" and version "15.2\(3\)e2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(3\)e3
Search vendor "Cisco" for product "Ios" and version "15.2\(3\)e3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(3\)e4
Search vendor "Cisco" for product "Ios" and version "15.2\(3\)e4"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(3\)e5
Search vendor "Cisco" for product "Ios" and version "15.2\(3\)e5"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(3\)ex
Search vendor "Cisco" for product "Ios" and version "15.2\(3\)ex"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(4\)ec
Search vendor "Cisco" for product "Ios" and version "15.2\(4\)ec"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(5\)e2a
Search vendor "Cisco" for product "Ios" and version "15.2\(5\)e2a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(5\)e2b
Search vendor "Cisco" for product "Ios" and version "15.2\(5\)e2b"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.2\(5a\)e1
Search vendor "Cisco" for product "Ios" and version "15.2\(5a\)e1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jbb6a
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jbb6a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jc7
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jc7"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jc50
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jc50"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jc51
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jc51"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jca7
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jca7"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jda3
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jda3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)je1
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)je1"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jnc4
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jnc4"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jnd2
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jnd2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jnp2
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jnp2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jpb
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jpb"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jpb2
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jpb2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.3\(3\)jpc3
Search vendor "Cisco" for product "Ios" and version "15.3\(3\)jpc3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.4\(3\)s5a
Search vendor "Cisco" for product "Ios" and version "15.4\(3\)s5a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.4\(3\)s6b
Search vendor "Cisco" for product "Ios" and version "15.4\(3\)s6b"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.4\(3\)s7a
Search vendor "Cisco" for product "Ios" and version "15.4\(3\)s7a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.5\(3\)s2a
Search vendor "Cisco" for product "Ios" and version "15.5\(3\)s2a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.5\(3\)s2b
Search vendor "Cisco" for product "Ios" and version "15.5\(3\)s2b"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.5\(3\)s3a
Search vendor "Cisco" for product "Ios" and version "15.5\(3\)s3a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.5\(3\)s4a
Search vendor "Cisco" for product "Ios" and version "15.5\(3\)s4a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.5\(3\)s4b
Search vendor "Cisco" for product "Ios" and version "15.5\(3\)s4b"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.5\(3\)s4d
Search vendor "Cisco" for product "Ios" and version "15.5\(3\)s4d"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(1\)s1a
Search vendor "Cisco" for product "Ios" and version "15.6\(1\)s1a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(2\)s0a
Search vendor "Cisco" for product "Ios" and version "15.6\(2\)s0a"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(2\)s2
Search vendor "Cisco" for product "Ios" and version "15.6\(2\)s2"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(2\)s3
Search vendor "Cisco" for product "Ios" and version "15.6\(2\)s3"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(2\)sp1b
Search vendor "Cisco" for product "Ios" and version "15.6\(2\)sp1b"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(2\)sp1c
Search vendor "Cisco" for product "Ios" and version "15.6\(2\)sp1c"
-
Affected
Cisco
Search vendor "Cisco"
Ios
Search vendor "Cisco" for product "Ios"
15.6\(2\)sp2a
Search vendor "Cisco" for product "Ios" and version "15.6\(2\)sp2a"
-
Affected