Cyber Resilience

CVE-2017-6742

HighCISA KEVActive ExploitationEUVD Exploited

Published: 17 July 2017

Published
17 July 2017
Modified
22 April 2026
KEV Added
19 April 2023
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.1479 94.7th percentile
Risk Priority 46 60% EPSS · 20% KEV · 20% CVSS

Summary

CVE-2017-6742 is a high-severity Improper Restriction of Operations within the Bounds of a Memory Buffer (CWE-119) vulnerability in Cisco Ios. Its CVSS base score is 8.8 (High).

Operationally, ranked in the top 5.3% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog.

The strongest mitigations our analysis identified are NIST 800-53 SC-7 (Boundary Protection) and SI-2 (Flaw Remediation).

Deeper analysis

A buffer overflow vulnerability exists in the SNMP implementation on affected Cisco devices, impacting all versions of the protocol including 1, 2c, and 3. The flaw allows an authenticated remote attacker to trigger a system reload or execute arbitrary code by sending a specially crafted SNMP packet directed at the device. The issue stems from improper handling of SNMP traffic and carries a CVSS score of 8.8 with the CWE-119 classification.

An attacker who knows the read-only community string for SNMPv2c or earlier, or valid user credentials for SNMPv3, can exploit the vulnerability to obtain full control of the system or cause a denial-of-service condition through a reload. Exploitation is possible over the network but requires the attacker to direct traffic specifically to the vulnerable device rather than relying on spoofed or broadcast packets.

Cisco security advisories recommend applying the available patches or mitigations referenced in cisco-sa-20170629-snmp, while the listing in the CISA Known Exploited Vulnerabilities catalog indicates confirmed real-world exploitation activity.

EU & UK References

Vulnerability details

A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the…

more

affected device.  The vulnerability is due to a buffer overflow in the affected code area. The vulnerability affects all versions of SNMP (versions 1, 2c, and 3). The attacker must know the SNMP read only community string (SNMP version 2c or earlier) or the user credentials (SNMPv3). An exploit could allow the attacker to execute arbitrary code and obtain full control of the system or to cause a reload of the affected system. Only traffic directed to the affected system can be used to exploit this vulnerability.

CWE(s)
KEV Date Added
19 April 2023

Related Threats

No named actor attribution yet. ATT&CK technique mapping in progress for this CVE.

Affected Assets

cisco
ios
12.0 — 12.4 · 15.0 — 15.6
cisco
ios xe
2.2.0 — 3.17

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly requires applying patches or vendor fixes for the SNMP buffer overflow flaw before exploitation can succeed.

prevent

Enforces boundary protections such as ACLs or management-station restrictions that block crafted SNMP packets from reaching the device.

prevent

Enforces authenticated access policies for SNMP, limiting the set of principals who can send the malicious packets that trigger the overflow.

References