// For flags

CVE-2017-3804

 

Severity Score

6.1
*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

0
*Multiple Sources

Exploited in Wild

-
*KEV

Decision

-
*SSVC
Descriptions

A vulnerability in Intermediate System-to-Intermediate System (IS-IS) protocol packet processing of Cisco Nexus 5000, 6000, and 7000 Series Switches software could allow an unauthenticated, adjacent attacker to cause a reload of the affected device. Switches in the FabricPath domain crash because of an __inst_001__isis_fabricpath hap reset when processing a crafted link-state packet. More Information: CSCvc45002. Known Affected Releases: 7.1(3)N1(2.1) 7.1(3)N1(3.12) 7.3(2)N1(0.296) 8.0(1)S2. Known Fixed Releases: 6.2(18)S11 7.0(3)I5(1.170) 7.0(3)I5(2) 7.1(4)N1(0.4) 7.1(4)N1(1b) 7.1(5)N1(0.986) 7.1(5)N1(1) 7.2(3)D1(0.8) 7.3(2)N1(0.304) 7.3(2)N1(1) 8.0(0.96)S0 8.0(1) 8.0(1)E1 8.0(1)S4 8.3(0)CV(0.788).

Una vulnerabilidad en el protocolo de procesamiento de paquetes Intermediate System-to-Intermediate System (IS-IS) de software Cisco Nexus 5000, 6000 y 7000 Series Switches podría permitir a un atacante adyacente no autenticado provocar un reinicio de los dispositivos afectados. Switches en el dominio FabricPath se bloquea a causa de un reinicio hap __inst_001__isis_fabricpath cuando se procesa un paquete de estado de enlace manipulado. Más información: CSCvc45002. Lanzamientos afectados conocidos: 7.1(3)N1(2.1) 7.1(3)N1(3.12) 7.3(2)N1(0.296) 8.0(1)S2. Lanzamientos reparados conocidos: 6.2(18)S11 7.0(3)I5(1.170) 7.0(3)I5(2) 7.1(4)N1(0.4) 7.1(4)N1(1b) 7.1(5)N1(0.986) 7.1(5)N1(1) 7.2(3)D1(0.8) 7.3(2)N1(0.304) 7.3(2)N1(1) 8.0(0.96)S0 8.0(1) 8.0(1)E1 8.0(1)S4 8.3(0)CV(0.788).

*Credits: N/A
CVSS Scores
Attack Vector
Adjacent
Attack Complexity
High
Privileges Required
None
User Interaction
None
Scope
Changed
Confidentiality
None
Integrity
None
Availability
High
Attack Vector
Adjacent
Attack Complexity
Medium
Authentication
None
Confidentiality
None
Integrity
None
Availability
Complete
* Common Vulnerability Scoring System
SSVC
  • Decision:-
Exploitation
-
Automatable
-
Tech. Impact
-
* Organization's Worst-case Scenario
Timeline
  • 2016-12-21 CVE Reserved
  • 2017-01-26 CVE Published
  • 2023-03-08 EPSS Updated
  • 2024-08-05 CVE Updated
  • ---------- Exploited in Wild
  • ---------- KEV Due Date
  • ---------- First Exploit
CWE
CAPEC
Affected Vendors, Products, and Versions
Vendor Product Version Other Status
Vendor Product Version Other Status <-- --> Vendor Product Version Other Status
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(2.1\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(2.1\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 5000
Search vendor "Cisco" for product "Nexus 5000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(2.1\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(2.1\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6001
Search vendor "Cisco" for product "Nexus 6001"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(2.1\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(2.1\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6004
Search vendor "Cisco" for product "Nexus 6004"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(2.1\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(2.1\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 7000
Search vendor "Cisco" for product "Nexus 7000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(3.12\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(3.12\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 5000
Search vendor "Cisco" for product "Nexus 5000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(3.12\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(3.12\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6001
Search vendor "Cisco" for product "Nexus 6001"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(3.12\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(3.12\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6004
Search vendor "Cisco" for product "Nexus 6004"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.1\(3\)n1\(3.12\)
Search vendor "Cisco" for product "Nx-os" and version "7.1\(3\)n1\(3.12\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 7000
Search vendor "Cisco" for product "Nexus 7000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.3\(2\)n1\(0.296\)
Search vendor "Cisco" for product "Nx-os" and version "7.3\(2\)n1\(0.296\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 5000
Search vendor "Cisco" for product "Nexus 5000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.3\(2\)n1\(0.296\)
Search vendor "Cisco" for product "Nx-os" and version "7.3\(2\)n1\(0.296\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6001
Search vendor "Cisco" for product "Nexus 6001"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.3\(2\)n1\(0.296\)
Search vendor "Cisco" for product "Nx-os" and version "7.3\(2\)n1\(0.296\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6004
Search vendor "Cisco" for product "Nexus 6004"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
7.3\(2\)n1\(0.296\)
Search vendor "Cisco" for product "Nx-os" and version "7.3\(2\)n1\(0.296\)"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 7000
Search vendor "Cisco" for product "Nexus 7000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
8.0\(1\)s2
Search vendor "Cisco" for product "Nx-os" and version "8.0\(1\)s2"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 5000
Search vendor "Cisco" for product "Nexus 5000"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
8.0\(1\)s2
Search vendor "Cisco" for product "Nx-os" and version "8.0\(1\)s2"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6001
Search vendor "Cisco" for product "Nexus 6001"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
8.0\(1\)s2
Search vendor "Cisco" for product "Nx-os" and version "8.0\(1\)s2"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 6004
Search vendor "Cisco" for product "Nexus 6004"
--
Safe
Cisco
Search vendor "Cisco"
Nx-os
Search vendor "Cisco" for product "Nx-os"
8.0\(1\)s2
Search vendor "Cisco" for product "Nx-os" and version "8.0\(1\)s2"
-
Affected
in Cisco
Search vendor "Cisco"
Nexus 7000
Search vendor "Cisco" for product "Nexus 7000"
--
Safe