ByteOS Network

Vulnerability Details :

CVE-2017-6737

Assigner-cisco

Assigner Org ID-d1c1063e-7a18-46af-9102-31f8928bc633

Published At-17 Jul, 2017 | 21:00

Updated At-31 Jul, 2025 | 16:22

Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

▼Known Exploited Vulnerabilities (KEV)

cisa.gov

Vendor:

Cisco Systems, Inc.

Product:IOS and IOS XE Software

Added At:03 Mar, 2022

Due At:24 Mar, 2022

Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE contains a vulnerability that could allow an authenticated, remote attacker to remotely execute code.

Used in Ransomware

Unknown

CWE

CWE-119

Required Action:

Apply updates per vendor instructions.

Additional Notes:

https://nvd.nist.gov/vuln/detail/CVE-2017-6737

▼Common Vulnerabilities and Exposures (CVE)

cve.org

Assigner:cisco

Assigner Org ID:d1c1063e-7a18-46af-9102-31f8928bc633

Published At:17 Jul, 2017 | 21:00

Updated At:31 Jul, 2025 | 16:22

▼CVE Numbering Authority (CNA)

A vulnerability in the SNMP implementation of could allow an authenticated, remote attacker to cause a reload of the affected system or to remotely execute code. An attacker could exploit this vulnerability by sending a crafted SNMP packet to the affected device.  The vulnerability is due to a buffer overflow in the affected code area. The vulnerability affects all versions of SNMP (versions 1, 2c, and 3). The attacker must know the SNMP read only community string (SNMP version 2c or earlier) or the user credentials (SNMPv3). An exploit could allow the attacker to execute arbitrary code and obtain full control of the system or to cause a reload of the affected system. Only traffic directed to the affected system can be used to exploit this vulnerability.

Affected Products

Vendor

Cisco Systems, Inc.

Product

IOS

Versions

Affected

12.1(3)XI
12.2(4)B
12.2(15)B
12.2(16)B1
12.2(4)B7
12.2(4)B2
12.2(16)B2
12.2(4)B6
12.2(4)B1
12.2(4)B4
12.2(4)B3
12.2(4)B8
12.2(4)B5
12.2(16)B
12.2(2)XA
12.2(2)XA2
12.2(2)XA3
12.2(2)XA4
12.2(2)XA5
12.2(2)XA1
12.2(2)XB11
12.2(2)XB5
12.2(2)XB2
12.2(2)XB1
12.2(2)XB10
12.2(2)XB7
12.2(2)XB3
12.2(2)XB6
12.2(2)XB14
12.2(2)XB12
12.2(2)XB15
12.2(2)XB8
12.2(2)XG
12.2(4)XL
12.2(4)XL5
12.2(4)XL2
12.2(4)XL6
12.2(4)XL4
12.2(4)XL1
12.2(4)XL3
12.2(4)XM
12.2(4)XM3
12.2(4)XM2
12.2(4)XM4
12.2(4)XM1
12.2(3d)
12.2(5b)
12.2(1)XS1a
12.2(2)XT
12.2(2)XT2
12.2(2)XT3
12.2(4)XW
12.2(4)YA
12.2(4)YA6
12.2(4)YA3
12.2(4)YA4
12.2(4)YA1
12.2(4)YA11
12.2(4)YA2
12.2(4)YA9
12.2(4)YA8
12.2(4)YA12
12.2(4)YA10
12.2(4)YA7
12.2(2)YC
12.2(2)YC4
12.2(2)YC1
12.2(2)YC3
12.2(2)YC2
12.2(8)YD
12.2(8)YD3
12.2(8)YD2
12.2(8)YD1
12.2(4)YF
12.2(4)YH
12.2(2)XF2
12.0(7)XK1
12.0(7)XK
12.2(2)DD2
12.2(1)XD
12.2(1)XD2
12.2(1)XD4
12.2(1)XD3
12.2(1)XD1
12.2(2)XH
12.2(2)XH2
12.2(2)XI
12.2(2)XI1
12.2(2)XI2
12.2(2)XJ
12.2(2)XK
12.2(2)XK3
12.2(2)XK2
12.2(2)XQ
12.2(2)XQ1
12.2(4)BW
12.2(4)BW1a
12.2(4)BW2
12.2(4)BW1
12.2(2)BX
12.2(2)BX1
12.2(15)BZ2
12.2(2)DX3
12.2(15)MC1c
12.2(15)MC1b
12.2(15)MC1a
12.2(2)XU
12.2(8)YJ
12.2(8)YJ1
12.2(11)YT
12.2(11)YT1
12.2(11)YT2
12.2(8)YN
12.2(8)YN1
12.2(9)YO
12.2(9)YO3
12.2(9)YO2
12.2(9)YO1
12.2(9)YO4
12.2(1a)XC
12.2(2)XC
12.2(1a)XC1
12.2(1a)XC3
12.2(2)XC1
12.2(1a)XC2
12.2(2)XC2
12.2(11)YP3
12.2(8)YL
12.2(8)YM
12.2(11)YU
12.2(11)YV
12.2(8)YW2
12.2(8)YW
12.2(8)YW3
12.2(8)YW1
12.2(8)YY
12.2(8)YY4
12.2(8)YY3
12.2(8)YY2
12.2(8)YY1
12.2(8)ZB3
12.2(8)ZB2
12.2(8)ZB7
12.2(8)ZB6
12.2(8)ZB4
12.2(8)ZB8
12.2(8)ZB1
12.2(8)ZB4a
12.2(8)ZB5
12.2(11)ZC
12.2(13)ZC
12.2(13)ZD
12.2(13)ZD3
12.2(13)ZD2
12.2(13)ZD1
12.2(13)ZD4
12.2(13)ZE
12.2(13)ZF
12.2(13)ZF2
12.2(13)ZF1
12.2(13)ZH
12.2(13)ZH5
12.2(13)ZH9
12.2(13)ZH2
12.2(13)ZH8
12.2(13)ZH10
12.2(13)ZH4
12.2(13)ZH3
12.2(13)ZH7
12.2(13)ZH6
12.2(15)ZJ
12.2(15)ZJ2
12.2(15)ZJ1
12.2(15)ZJ3
12.2(15)ZJ5
12.2(15)ZL
12.2(15)ZL1
12.3(9a)
12.3(15)
12.3(19)
12.3(10f)
12.3(10a)
12.3(1)
12.3(1a)
12.3(10)
12.3(10b)
12.3(10c)
12.3(10d)
12.3(10e)
12.3(12b)
12.3(12a)
12.3(12c)
12.3(12d)
12.3(12e)
12.3(12)
12.3(13)
12.3(13a)
12.3(13b)
12.3(15a)
12.3(16)
12.3(17)
12.3(17a)
12.3(17b)
12.3(18)
12.3(20)
12.3(3f)
12.3(3e)
12.3(3g)
12.3(3c)
12.3(3b)
12.3(3a)
12.3(3)
12.3(3i)
12.3(3h)
12.3(5c)
12.3(5b)
12.3(5a)
12.3(5)
12.3(5f)
12.3(5e)
12.3(5d)
12.3(6f)
12.3(6e)
12.3(6c)
12.3(6b)
12.3(6a)
12.3(6)
12.3(9d)
12.3(9e)
12.3(9)
12.3(9b)
12.3(9c)
12.3(16a)
12.3(15b)
12.3(21)
12.3(22)
12.3(21b)
12.3(23)
12.3(26)
12.3(20a)
12.3(22a)
12.3(25)
12.3(17c)
12.3(24)
12.3(19a)
12.3(24a)
12.3(18a)
12.3(1a)B
12.3(3)B
12.3(5a)B
12.3(3)B1
12.3(5a)B3
12.3(5a)B2
12.3(5a)B5
12.3(5a)B4
12.3(5a)B1
12.3(11)T
12.3(7)T12
12.3(11)T11
12.3(11)T10
12.3(14)T7
12.3(14)T
12.3(8)T
12.3(2)T
12.3(4)T
12.3(7)T
12.3(8)T9
12.3(2)T9
12.3(8)T6
12.3(4)T2a
12.3(4)T9
12.3(4)T4
12.3(2)T1
12.3(11)T5
12.3(7)T3
12.3(2)T2
12.3(8)T3
12.3(4)T7
12.3(8)T7
12.3(11)T8
12.3(7)T2
12.3(8)T4
12.3(8)T8
12.3(14)T5
12.3(11)T3
12.3(4)T10
12.3(2)T4
12.3(8)T10
12.3(14)T2
12.3(4)T2
12.3(7)T7
12.3(7)T10
12.3(7)T4
12.3(11)T6
12.3(7)T11
12.3(4)T6
12.3(2)T3
12.3(2)T5
12.3(2)T6
12.3(4)T3
12.3(14)T3
12.3(2)T8
12.3(11)T4
12.3(7)T9
12.3(8)T11
12.3(11)T9
12.3(7)T8
12.3(4)T1
12.3(8)T5
12.3(4)T11
12.3(4)T8
12.3(14)T1
12.3(11)T2
12.3(7)T6
12.3(2)T7
12.3(11)T7
12.3(7)T1
12.3(14)T6
12.3(8)T1
12.2(15)CZ
12.2(15)CZ1
12.2(15)CZ3
12.2(15)CZ2
12.2(13)ZP
12.2(13)ZP1
12.2(13)ZP3
12.2(13)ZP2
12.2(13)ZP4
12.3(2)XA
12.3(2)XA1
12.3(4)XQ
12.3(4)XQ1
12.3(11)XL
12.3(11)XL1
12.3(4)XK3
12.3(4)XK1
12.3(4)XK4
12.3(4)XK
12.3(4)XK2
12.3(7)XJ
12.3(7)XJ1
12.3(7)XJ2
12.3(7)XI7
12.3(7)XI1
12.3(7)XI1b
12.3(7)XI7a
12.3(7)XI2a
12.3(7)XI1c
12.3(7)XI3
12.3(7)XI6
12.3(7)XI8c
12.3(7)XI2
12.3(7)XI5
12.3(4)XG
12.3(4)XG3
12.3(4)XG1
12.3(4)XG4
12.3(4)XG2
12.3(4)XG5
12.3(2)XF
12.3(2)XE
12.3(2)XE1
12.3(4)XD
12.3(4)XD4
12.3(4)XD1
12.3(4)XD3
12.3(4)XD2
12.3(2)XC
12.3(2)XC2
12.3(2)XC1
12.3(2)XB2
12.3(2)XB
12.3(2)XB3
12.3(2)XB1
12.2(25)SE2
12.2(29)SV2
12.3(7)XR
12.3(7)XR4
12.3(7)XR3
12.3(7)XR5
12.3(7)XR6
12.3(7)XR7
12.3(8)XU5
12.3(8)XU2
12.3(8)XU4
12.3(8)XU3
12.3(8)XX
12.3(8)XX1
12.3(8)XW
12.3(8)XW2
12.3(8)XW3
12.3(8)XW1
12.3(8)XY
12.3(8)XY3
12.3(8)XY5
12.3(8)XY4
12.3(8)XY1
12.3(8)XY7
12.3(8)XY2
12.3(8)XY6
12.3(2)XZ1
12.3(2)XZ2
12.3(11)YF
12.3(11)YF2
12.3(11)YF3
12.3(11)YF4
12.3(11)YF1
12.3(8)YG
12.3(8)YG3
12.3(8)YG2
12.3(8)YG4
12.2(12b)M1
12.2(12h)M1
12.2(8)BY
12.2(8)BY1
12.2(8)BY2
12.2(4)XV
12.2(4)XV1
12.2(4)XV2
12.2(4)XV4
12.2(4)XV4a
12.2(4)XV3
12.2(4)XV5
12.3(11)YK
12.3(11)YK1
12.3(11)YK2
12.2(18)SO1
12.2(18)SO3
12.2(18)SO2
12.3(2)JA3
12.3(2)JA4
12.3(11)JA3
12.3(11)JA2
12.3(14)YQ8
12.3(14)YQ
12.3(14)YQ5
12.3(14)YQ4
12.3(14)YQ7
12.3(14)YQ1
12.3(14)YQ6
12.3(14)YQ3
12.3(14)YQ2
12.4(3e)
12.4(7b)
12.4(8)
12.4(5b)
12.4(7a)
12.4(3d)
12.4(1)
12.4(1a)
12.4(1b)
12.4(1c)
12.4(10)
12.4(3)
12.4(3a)
12.4(3b)
12.4(3c)
12.4(3f)
12.4(5)
12.4(5a)
12.4(7c)
12.4(7)
12.4(8a)
12.4(8b)
12.4(7d)
12.4(3g)
12.4(8c)
12.4(10b)
12.4(12)
12.4(12a)
12.4(12b)
12.4(13)
12.4(13a)
12.4(13b)
12.4(13c)
12.4(7e)
12.4(17)
12.4(25e)
12.4(18b)
12.4(18e)
12.4(25g)
12.4(3i)
12.4(3j)
12.4(23b)
12.4(3h)
12.4(7h)
12.4(25a)
12.4(16)
12.4(13d)
12.4(25)
12.4(25c)
12.4(19)
12.4(13e)
12.4(25b)
12.4(23)
12.4(10c)
12.4(21)
12.4(16b)
12.4(19b)
12.4(16a)
12.4(23a)
12.4(25d)
12.4(7f)
12.4(18)
12.4(21a)
12.4(13f)
12.4(25f)
12.4(18c)
12.4(5c)
12.4(8d)
12.4(12c)
12.4(17a)
12.4(18a)
12.4(17b)
12.4(7g)
12.2(60)EZ16
12.3(8)JK
12.3(14)YU
12.3(14)YU1
12.4(6)MR1
12.4(11)MR
12.4(2)MR
12.4(4)MR
12.4(6)MR
12.4(9)MR
12.4(12)MR
12.4(16)MR
12.4(16)MR1
12.4(19)MR2
12.4(19)MR1
12.4(19)MR
12.4(20)MR
12.4(4)MR1
12.4(19)MR3
12.4(12)MR1
12.4(20)MR2
12.4(16)MR2
12.4(12)MR2
12.4(2)MR1
12.4(20)MR1
12.4(4)T
12.4(4)T1
12.4(4)T2
12.4(4)T3
12.4(6)T
12.4(6)T1
12.4(6)T2
12.4(9)T
12.4(4)T4
12.4(2)T5
12.4(6)T3
12.4(2)T
12.4(11)T
12.4(15)T
12.4(20)T
12.4(24)T
12.4(24)T3
12.4(4)T8
12.4(20)T1
12.4(22)T1
12.4(15)T9
12.4(11)T4
12.4(15)T8
12.4(6)T5
12.4(15)T15
12.4(24)T5
12.4(15)T2
12.4(6)T8
12.4(15)T12
12.4(24)T4
12.4(6)T11
12.4(9)T5
12.4(20)T3
12.4(6)T4
12.4(4)T6
12.4(22)T
12.4(20)T6
12.4(9)T3
12.4(24)T8
12.4(6)T7
12.4(15)T13
12.4(6)T10
12.4(15)T3
12.4(24)T2
12.4(22)T5
12.4(2)T3
12.4(15)T10
12.4(22)T4
12.4(20)T5
12.4(9)T6
12.4(15)T4
12.4(2)T4
12.4(24)T1
12.4(9)T4
12.4(24)T7
12.4(22)T3
12.4(9)T1
12.4(24)T6
12.4(6)T9
12.4(15)T5
12.4(4)T7
12.4(20)T2
12.4(2)T1
12.4(11)T1
12.4(15)T11
12.4(2)T6
12.4(2)T2
12.4(15)T7
12.4(11)T2
12.4(9)T7
12.4(15)T14
12.4(11)T3
12.4(15)T6
12.4(15)T16
12.4(15)T1
12.4(9)T2
12.4(6)T6
12.4(22)T2
12.4(4)T5
12.4(20)T4
12.4(15)T17
12.3(14)YT
12.3(14)YT1
12.2(8)TPC10a
12.2(8)TPC10b
12.2(8)TPC10c
12.3(7)JX2
12.3(7)JX
12.3(7)JX1
12.3(7)JX4
12.3(11)JX
12.3(7)JX7
12.3(7)JX12
12.3(7)JX9
12.3(7)JX10
12.3(11)JX1
12.3(7)JX6
12.3(7)JX5
12.3(7)JX3
12.3(7)JX11
12.3(7)JX8
12.4(2)XB
12.4(2)XB1
12.4(2)XB6
12.4(2)XB7
12.4(2)XB11
12.4(2)XB3
12.4(2)XB9
12.4(2)XB8
12.4(2)XB2
12.4(2)XB10
12.4(2)XB4
12.4(2)XB5
12.4(2)XA
12.4(2)XA1
12.4(2)XA2
12.3(14)YM8
12.3(14)YM12
12.3(14)YM4
12.3(14)YM3
12.3(14)YM7
12.3(14)YM11
12.3(14)YM9
12.3(14)YM6
12.3(14)YM10
12.3(14)YM13
12.3(14)YM5
12.3(14)YM2
12.2(28)ZX
12.4(4)XC
12.4(4)XC1
12.4(4)XC5
12.4(4)XC7
12.4(4)XC3
12.4(4)XC4
12.4(4)XC2
12.4(4)XC6
12.4(4)XD
12.4(4)XD4
12.4(4)XD10
12.4(4)XD12
12.4(4)XD2
12.4(4)XD8
12.4(4)XD11
12.4(4)XD1
12.4(4)XD5
12.4(4)XD7
12.4(4)XD9
12.4(6)XE
12.4(6)XE2
12.4(6)XE1
12.3(11)YZ1
12.3(11)YZ
12.3(11)YZ2
12.4(11)XJ
12.4(11)XJ3
12.4(11)XJ2
12.4(11)XJ4
12.4(6)XT
12.4(6)XT1
12.4(6)XT2
12.4(6)XP
12.4(11)MD2
12.4(11)XV
12.4(11)XV1
12.4(11)XW
12.4(11)XW3
12.4(11)XW7
12.4(11)XW10
12.4(11)XW8
12.4(11)XW9
12.4(11)XW6
12.4(11)XW4
12.4(11)XW1
12.4(11)XW5
12.4(11)XW2
12.4(3g)JMA1
12.4(15)XY4
12.4(15)XY5
12.4(15)XY1
12.4(15)XY
12.4(15)XY2
12.4(15)XY3
12.4(15)XZ
12.4(15)XZ2
12.4(15)XZ1
12.4(15)XL3
12.4(15)XL1
12.4(15)XL2
12.4(15)XL4
12.4(15)XL5
12.4(15)XL
12.3(8)ZA
12.4(15)XM1
12.4(15)XM2
12.2(33)STE0
12.4(10b)JDA1
12.4(3g)JMB
12.4(23c)JY
12.4(10b)JDC
12.4(10b)JDD
15.0(1)M1
15.0(1)M5
15.0(1)M4
15.0(1)M3
15.0(1)M2
15.0(1)M6
15.0(1)M
15.0(1)M7
15.0(1)M10
15.0(1)M9
15.0(1)M8
15.0(1)XA2
15.0(1)XA4
15.0(1)XA1
15.0(1)XA3
15.0(1)XA
15.0(1)XA5
15.1(2)T
15.1(1)T4
15.1(3)T2
15.1(1)T1
15.1(2)T0a
15.1(3)T3
15.1(1)T3
15.1(2)T3
15.1(2)T4
15.1(1)T2
15.1(3)T
15.1(2)T2a
15.1(3)T1
15.1(1)T
15.1(2)T2
15.1(2)T1
15.1(2)T5
15.1(3)T4
15.1(1)T5
15.1(1)XB
15.0(1)XO1
15.0(1)XO
15.0(2)XO
15.3(1)T
15.3(2)T
15.3(1)T1
15.3(1)T2
15.3(1)T3
15.3(1)T4
15.3(2)T1
15.3(2)T2
15.3(2)T3
15.3(2)T4
12.4(10b)JDE
15.0(1)EY
15.0(1)EY1
15.0(1)EY2
12.4(20)MRB
12.4(20)MRB1
15.1(4)M3
15.1(4)M
15.1(4)M1
15.1(4)M2
15.1(4)M6
15.1(4)M5
15.1(4)M4
15.1(4)M7
15.1(4)M3a
15.1(4)M10
15.1(4)M8
15.1(4)M9
12.4(3g)JMC1
12.4(3g)JMC
12.4(3g)JMC2
15.0(2)SE8
15.1(2)GC
15.1(2)GC1
15.1(2)GC2
15.1(4)GC
15.1(4)GC1
15.1(4)GC2
15.2(4)M
15.2(4)M1
15.2(4)M2
15.2(4)M4
15.2(4)M3
15.2(4)M5
15.2(4)M8
15.2(4)M10
15.2(4)M7
15.2(4)M6
15.2(4)M9
15.2(4)M6a
15.2(4)M11
15.0(2)SG11a
12.4(21a)JHC
15.0(1)EX
15.0(2)EX2
15.0(2)EX8
15.0(2)EX10
15.0(2)EX11
15.0(2)EX13
15.0(2)EX12
15.2(1)GC
15.2(1)GC1
15.2(1)GC2
15.2(2)GC
15.2(3)GC
15.2(3)GC1
15.2(4)GC
15.2(4)GC1
15.2(4)GC2
15.2(4)GC3
15.4(1)T
15.4(2)T
15.4(1)T2
15.4(1)T1
15.4(1)T3
15.4(2)T1
15.4(2)T3
15.4(2)T2
15.4(1)T4
15.4(2)T4
15.2(2a)E2
15.2(3a)E
15.2(3)E4
15.2(2)E5b
15.2(6a)E
15.2(6)E0c
15.2(7a)E0b
15.2(7b)E0b
15.1(3)MRA3
15.1(3)MRA4
15.1(3)SVB1
15.1(3)SVB2
15.4(2)S3
15.3(3)M
15.3(3)M1
15.3(3)M2
15.3(3)M3
15.3(3)M5
15.3(3)M4
15.3(3)M6
15.3(3)M7
15.3(3)M8
15.3(3)M9
15.3(3)M8a
15.2(4)JN
15.1(3)SVD
15.1(3)SVD1
15.1(3)SVD2
15.1(3)SVF
15.1(3)SVF1
15.1(3)SVE
15.2(4)JAZ1
15.4(1)CG
15.4(2)CG
15.1(3)SVG
15.5(1)T
15.5(1)T1
15.5(2)T
15.5(1)T2
15.5(1)T3
15.5(2)T1
15.5(2)T2
15.5(2)T3
15.5(2)T4
15.5(1)T4
15.2(4)EA10
15.5(3)M
15.5(3)M1
15.5(3)M2
15.5(3)M3
15.5(3)M4
15.5(3)M4a
15.5(3)M5
15.3(3)JAA1
15.0(2)SQD
15.0(2)SQD1
15.0(2)SQD2
15.0(2)SQD3
15.0(2)SQD4
15.0(2)SQD5
15.0(2)SQD6
15.0(2)SQD7
15.0(2)SQD8
15.6(2)S0a
15.6(1)T
15.6(2)T
15.6(1)T0a
15.6(1)T1
15.6(2)T1
15.6(1)T2
15.6(2)T2
15.6(1)T3
15.6(3)M
15.6(3)M1
15.6(3)M0a
15.6(3)M1b
15.6(3)M2
15.6(3)M2a
15.1(3)SVJ2
15.3(3)JPC5
15.3(3)JPR1

Problem Types

Type	CWE ID	Description
cwe	CWE-119	Improper Restriction of Operations within the Bounds of a Memory Buffer

Type: cwe

CWE ID: CWE-119

Description: Improper Restriction of Operations within the Bounds of a Memory Buffer

Metrics

Version	Base score	Base severity	Vector
3.0	8.8	HIGH	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Version: 3.0

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploits

At the time of initial publication, Cisco was aware of external knowledge of the vulnerabilities described in this advisory and, as a precaution, notified customers about the potential for exploitation. On January 6, 2017, a security researcher published functional exploit code for these vulnerabilities. The Cisco Product Security Incident Response Team (PSIRT) is aware of exploitation of the following vulnerabilities that are described in this advisory: CVE-2017-6736 CVE-2017-6737 CVE-2017-6738 CVE-2017-6739 CVE-2017-6740 CVE-2017-6742 CVE-2017-6743 CVE-2017-6744 The Cisco PSIRT is aware of exploit code available for CVE-2017-6741. Additional information can be found at Cisco TALOS: DNS Hijacking Abuses Trust In Core Internet Service ["https://blog.talosintelligence.com/2019/04/seaturtle.html"].

References

Hyperlink	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp	N/A

Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp

Resource: N/A

▼Authorized Data Publishers (ADP)

1. CVE Program Container

References

Hyperlink	Resource
http://www.securityfocus.com/bid/99345	vdb-entry x_refsource_BID x_transferred
http://www.securitytracker.com/id/1038808	vdb-entry x_refsource_SECTRACK x_transferred
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp	x_refsource_CONFIRM x_transferred

Hyperlink: http://www.securityfocus.com/bid/99345

Resource:

vdb-entry

x_refsource_BID

x_transferred

Hyperlink: http://www.securitytracker.com/id/1038808

Resource:

vdb-entry

x_refsource_SECTRACK

x_transferred

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp

Resource:

x_refsource_CONFIRM

x_transferred

2. CISA ADP Vulnrichment

Metrics Other Info

kev

dateAdded:

2022-03-03

reference:

https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6737

Timeline

Event	Date
CVE-2017-6737 added to CISA KEV	2022-03-03 00:00:00

Event: CVE-2017-6737 added to CISA KEV

Date: 2022-03-03 00:00:00

▼National Vulnerability Database (NVD)

nvd.nist.gov

Source:psirt@cisco.com

Published At:17 Jul, 2017 | 21:29

Updated At:31 Jul, 2025 | 17:15

CISA Catalog

Date Added	Due Date	Vulnerability Name	Required Action
2022-03-03	2022-03-24	Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability	Apply updates per vendor instructions.

Date Added: 2022-03-03

Due Date: 2022-03-24

Vulnerability Name: Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

Required Action: Apply updates per vendor instructions.

Metrics

Type	Version	Base score	Base severity	Vector
Primary	3.1	8.8	HIGH	CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Secondary	3.0	8.8	HIGH	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Primary	2.0	9.0	HIGH	AV:N/AC:L/Au:S/C:C/I:C/A:C

Type: Primary

Version: 3.1

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Secondary

Version: 3.0

Base score: 8.8

Base severity: HIGH

Vector:

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Type: Primary

Version: 2.0

Base score: 9.0

Base severity: HIGH

Vector:

AV:N/AC:L/Au:S/C:C/I:C/A:C

CPE Matches

Cisco Systems, Inc.

>>ios>>Versions from 12.0(inclusive) to 12.4(inclusive)

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>ios>>Versions from 15.0(inclusive) to 15.6(inclusive)

cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>ios_xe>>Versions from 2.2.0(inclusive) to 3.17.0(inclusive)

cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-119	Secondary	psirt@cisco.com
CWE-119	Primary	nvd@nist.gov

CWE ID: CWE-119

Type: Secondary

Source: psirt@cisco.com

CWE ID: CWE-119

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp	psirt@cisco.com	N/A
http://www.securityfocus.com/bid/99345	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1038808	af854a3a-2127-422b-91ae-364da2661108	Broken Link Third Party Advisory VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory

Hyperlink: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp

Source: psirt@cisco.com

Resource: N/A

Hyperlink: http://www.securityfocus.com/bid/99345

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: http://www.securitytracker.com/id/1038808

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Broken Link

Third Party Advisory

VDB Entry

Hyperlink: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp

Source: af854a3a-2127-422b-91ae-364da2661108

Resource:

Vendor Advisory

CVE-2017-6737

Credits

Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

Vendors

Products

Metrics (CVSS)

Weaknesses

Attack Patterns

Solution/Workaround

References

EPSS History

Score

Latest Score

N/A

Percentile

Latest Percentile

N/A

Stakeholder-Specific Vulnerability Categorization (SSVC)

Cisco IOS and IOS XE Software SNMP Remote Code Execution Vulnerability

Used in Ransomware

Unknown

CWE

Required Action:

Additional Notes:

Affected Products

Affected

Problem Types

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

Affected Products

Metrics

Metrics Other Info

Impacts

Solutions

Configurations

Workarounds

Exploits

Credits

Timeline

Replaced By

Rejected Reason

References

CISA Catalog

Metrics

CPE Matches

Weaknesses

Evaluator Description

Evaluator Impact

Evaluator Solution

Vendor Statements

References

Change History

Similar CVEs