CVE-2017-6665

Name of the Vulnerable Software and Affected Versions Cisco IOS Software and Cisco IOS XE Software versions Denali-16.2.1 through Denali-16.3.1

Description A vulnerability in the Autonomic Networking feature could allow an unauthenticated, adjacent attacker to reset the Autonomic Control Plane (ACP) of an affected system and view ACP packets that are transferred in clear text within an affected system. The vulnerability is due to unknown reasons. An attacker could exploit this vulnerability by capturing and replaying ACP packets that are transferred within an affected system. A successful exploit could allow the attacker to reset the ACP of an affected system, resulting in a denial of service (DoS) condition. A successful exploit could also allow the attacker to capture and view ACP packets, which should have been encrypted over the ACP, in clear text.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.