Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

Added April 19, 2023 • Due May 10, 2023 • CVE-2017-6742

Overdue Cisco / IOS and IOS XE Software CWE-119

Description

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload.

Required Action

Apply updates per vendor instructions.

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
https://nvd.nist.gov/vuln/detail/CVE-2017-6742

Additional Information

Catalog Version: 2025.01.24
Catalog Released: Jan. 24, 2025
Days Until Due: 0 days
Last Updated: 4 months, 2 weeks ago