PT-2017-16114 · Cisco · Cisco Industrial Ethernet 2000 Series Switches

Publicado

2017-02-03

Atualizado

2019-10-03

CVE-2017-3812

CVSS v2.0

7.1

Alta

Vetor

AV:N/AC:M/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco Industrial Ethernet 2000 Series Switches versions 15.2(5.4.32i)E2 through 15.2(5.4.61i)E2

Description A memory leak in the Common Industrial Protocol (CIP) functionality could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition.

Recommendations For versions 15.2(5.4.32i)E2 through 15.2(5.4.61i)E2, update to version 15.2(5.4.62i)E2 to resolve the issue.

Correção

Missing Release of Resource after Effective Lifetime

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-772

Identificadores relacionados

CVE-2017-3812

Produtos afetados

Cisco Industrial Ethernet 2000 Series Switches

PT-2017-16114 · Cisco · Cisco Industrial Ethernet 2000 Series Switches

CVE-2017-3812

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 5