CVE-2017-6627
A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 through 3.18 could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interface queue wedge and a denial of service (DoS) condition. The vulnerability is due to Cisco IOS Software application changes that create UDP sockets and leave the sockets idle without closing them. An attacker could exploit this vulnerability by sending UDP packets with a destination port of 0 to an affected device. A successful exploit could allow the attacker to cause UDP packets to be held in the input interfaces queue, resulting in a DoS condition. The input interface queue will stop holding UDP packets when it receives 250 packets. Cisco Bug IDs: CSCup10024, CSCva55744, CSCva95506.
EPSS 10.18% · 93.3th percentile
Risk Scores
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| cisco | ios | *, 15.1\(2\)gc, 15.1\(2\)gc1 |
| cisco | ios_xe | *, 3.17.1s, 3.14.1s |
| n/a | Cisco IOS and Cisco IOS XE | * |
Exploit Intelligence
- CIRCL exploited: CVE-2017-6627 (circl-sighting)
- CIRCL seen: CVE-2017-6627 (circl-sighting)
- CIRCL seen: CVE-2017-6627 (circl-sighting)
- CIRCL seen: CVE-2017-6627 (circl-sighting)
- CIRCL seen: CVE-2017-6627 (circl-sighting)
- https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6627 (circl)
- 100644 (circl)
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170906-ios-udp (circl)
- 1039289 (circl)
- kev.json (github-poc)
…and 9 more exploits
Timeline
- Sep 6, 2017 CVE Published
- Apr 14, 2021 EPSS Score
- Jun 23, 2021 EPSS Score
- Oct 26, 2021 EPSS Score
- Dec 27, 2021 EPSS Score
- Feb 28, 2022 EPSS Score
- Mar 3, 2022 CISA KEV Added
- May 2, 2022 EPSS Score
- Sep 5, 2022 EPSS Score
- Nov 6, 2022 EPSS Score
- Jan 8, 2023 EPSS Score
- Mar 7, 2023 EPSS Score