CVE-2017-12289

Severity Score

4.4

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability in conditional, verbose debug logging for the IPsec feature of Cisco IOS XE Software could allow an authenticated, local attacker to display sensitive IPsec information in the system log file. The vulnerability is due to incorrect implementation of IPsec conditional, verbose debug logging that causes sensitive information to be written to the log file. This information should be restricted. An attacker who has valid administrative credentials could exploit this vulnerability by authenticating to the device and enabling conditional, verbose debug logging for IPsec and viewing the log file. An exploit could allow the attacker to access sensitive information related to the IPsec configuration. Cisco Bug IDs: CSCvf12081.

Una vulnerabilidad en el registro de depuración detallado, condicional para la funcionalidad IPsec del software Cisco IOS XE podría permitir que un atacante local autenticado muestre información sensible de IPsec en el archivo de registro del sistema La vulnerabilidad se debe a la incorrecta implementación del registro de depuración detallado, condicional que da lugar a que se escriba información sensible en el archivo de registro. Esta información debería estar restringida. Un atacante que tenga credenciales de administrador válidas podría explotar esta vulnerabilidad autenticándose en el dispositivo y habilitando el registro de depuración detallado, condicional para IPsec y visualizando el archivo de registro. Un exploit podría permitir que el atacante acceda a información sensible relacionada con la configuración de IPsec. Cisco Bug IDs: CSCvf12081

*Credits: N/A

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

None

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-08-03 CVE Reserved
2017-10-19 CVE Published
2023-03-08 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-200: Exposure of Sensitive Information to an Unauthorized Actor

CAPEC

References (3)

URL	Tag	Source
http://www.securityfocus.com/bid/101509	Third Party Advisory
http://www.securitytracker.com/id/1039628	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171018-cisco-ios-xe1	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Ios Search vendor "Cisco" for product "Ios"				<= 16.7.1 Search vendor "Cisco" for product "Ios" and version " <= 16.7.1"		-		Affected