CVE-2017-12232 — Cisco IOS Software for Cisco Integrated Services Routers Denial-of-Service Vulnerability

2022-03-03 • CISA Known Exploited Vulnerability

[event] A vulnerability in the implementation of a protocol in Cisco Integrated Services Routers Generation 2 (ISR G2) Routers running Cisco IOS could allow an unauthenticated, adjacent attacker to cause an affected device to reload, resulting in a denial of service.

> AFFECTED SOFTWARE

Field	Value
Vendor	Cisco
Product	IOS software
CWE	CWE-399
CVE ID	CVE-2017-12232
Date Added	2022-03-03
Due Date	2022-03-24
Ransomware Campaign	Unknown

> MITIGATION

Apply updates per vendor instructions.

Due Date: 2022-03-24

> REFERENCES

[1] https://nvd.nist.gov/vuln/detail/CVE-2017-12232