CVE-2017-12250

Name of the Vulnerable Software and Affected Versions Cisco Wide Area Application Services (WAAS) (affected versions not specified)

Description A vulnerability in the HTTP web interface could allow an unauthenticated, remote attacker to cause an HTTP Application Optimization (AO) related process to restart, resulting in a partial denial of service (DoS) condition. This is due to a lack of input validation of user-supplied input parameters within an HTTP request. An attacker could exploit this by sending a crafted HTTP request, causing a DoS condition when the process restarts. During the restart, the WAAS could drop traffic.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.