Vulnslist

find the latest Cisco vulnerabilities

Cisco ASR 5000 Series Aggregation Services Routers Access Control List Security Bypass Vulnerability

cisco-sa-20170719-asr1 · Medium · Published · Updated

A vulnerability in certain filtering mechanisms of access control lists (ACLs) for Cisco ASR 5000 Series Aggregation Services Routers could allow an unauthenticated, remote attacker to bypass ACL rules that have been configured for an affected device. The vulnerability exists because the affected device fails to inspect and match certain traffic that meets the criteria defined in ACL rules configured for the device. An attacker could exploit this vulnerability by sending crafted HTTP packets to an affected device. A successful exploit could allow the attacker to bypass certain sets of rules defined in ACLs for the affected device. There are no workarounds that address this vulnerability. This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170719-asr1

Cisco advisory ·CSAF JSON

Workarounds

There are no workarounds that address this vulnerability.

CVEsCVE-2017-6672
Cisco Bug IDsCSCvb99022, CSCvc16964, CSCvc37351, CSCvc54843, CSCvc63444, CSCvc77815, CSCvc88658, CSCve08955, CSCve14141, CSCve33870
CVSS ScoreBase 5.3
Base 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N/E:X/RL:X/RC:X
Product Names From Source
Cisco ASR 5000 Series Software

CSAF Product Statuses

Product Status Source CVE Rows
Cisco ASR 5000 Series Software known_affected cisco_csaf CVE-2017-6672 1

Related Products

Product CVE Evidence
Cisco ASR 5000 Series Software CVE-2017-6672 Cisco OpenVuln · family-level