CVE-2017-6665
Severity CVSS v4.0:
Pending analysis
Type:
CWE-319
Cleartext Transmission of Sensitive Information
Publication date:
07/08/2017
Last modified:
20/04/2025
Description
A vulnerability in the Autonomic Networking feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, adjacent attacker to reset the Autonomic Control Plane (ACP) of an affected system and view ACP packets that are transferred in clear text within an affected system, an Information Disclosure Vulnerability. More Information: CSCvd51214. Known Affected Releases: Denali-16.2.1 Denali-16.3.1.
Impact
Base Score 3.x
6.50
Severity 3.x
MEDIUM
Base Score 2.0
3.30
Severity 2.0
LOW
Vulnerable products and versions
| CPE | From | Up to |
|---|---|---|
| cpe:2.3:o:cisco:ios:15.2\(3\)e:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3\)e1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3\)e2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3\)e3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3\)e4:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3\)e5:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3a\)e:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3a\)e1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3m\)e2:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3m\)e3:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3m\)e6:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(3m\)e8:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(4\)e:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(4\)e1:*:*:*:*:*:*:* | ||
| cpe:2.3:o:cisco:ios:15.2\(4\)e2:*:*:*:*:*:*:* |
To consult the complete list of CPE names with products and versions, see this page
References to Advisories, Solutions, and Tools
- http://www.securityfocus.com/bid/99969
- http://www.securitytracker.com/id/1038998
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170726-aniacp
- http://www.securityfocus.com/bid/99969
- http://www.securitytracker.com/id/1038998
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170726-aniacp