What is CVE-2017-6627?

CVE-2017-6627 is a vulnerability in Cisco Ios And Xe, classified under CWE-399. Published 2017-09-07.

Is CVE-2017-6627 known to be exploited?

Yes. CVE-2017-6627 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-03-03), indicating it is being actively exploited. 2 public proof-of-concept repositories are indexed.

Vulnerability in Cisco Ios And Xe

CVE-2017-6627

A vulnerability in the UDP processing code of Cisco IOS 15.1, 15.2, and 15.4 and IOS XE 3.14 through 3.18 could allow an unauthenticated, remote attacker to cause the input queue of an affected system to hold UDP packets, causing an interf…

EPSS: 0.102 (93.3th percentile) — read the EPSS interpretation.

Affected products

N/a Cisco Ios And Xe — versions Cisco IOS and Cisco IOS XE

Weakness classification (CWE)

CWE-399

CISA KEV (Known Exploited Vulnerabilities)

This CVE is on the CISA KEV catalog, added on 2022-03-03. CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.

BOD 22-01 due date: 2022-03-24.

Required action: Apply updates per vendor instructions.

Public proof-of-concept exploits

References

100644 (vdb-entry, x_refsource_BID)
1039289 (vdb-entry, x_refsource_SECTRACK)
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170906… (x_refsource_CONFIRM)

Frequently asked questions

What is CVE-2017-6627?: CVE-2017-6627 is a vulnerability in Cisco Ios And Xe, classified under CWE-399. Published 2017-09-07.
Is CVE-2017-6627 known to be exploited?: Yes. CVE-2017-6627 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2022-03-03), indicating it is being actively exploited. 2 public proof-of-concept repositories are indexed.