Sign-up

ID

VAR-201705-3471


CVE

CVE-2017-3876


TITLE

Cisco IOS XR Router Event Management Service Resource management vulnerability in daemon

Trust: 0.8

sources: JVNDB: JVNDB-2017-004130

DESCRIPTION

A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR routers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on the affected device. The vulnerability is due to improper handling of gRPC requests. An attacker could exploit this vulnerability by repeatedly sending unauthenticated gRPC requests to the affected device. A successful exploit could allow the attacker to crash the device in such a manner that manual intervention is required to recover. This vulnerability affects all Cisco IOS XR platforms that are running release 6.1.1 of Cisco IOS XR Software when the gRPC service is enabled on the device. The gRPC service is not enabled by default. Cisco Bug IDs: CSCvb14441. Vendors have confirmed this vulnerability Bug ID CSCvb14441 It is released as.Service operation interruption (DoS) There is a possibility of being put into a state. Cisco IOS is the interconnected network operating system used on most Cisco system routers and network switches. Attackers can exploit this issue to crash the application, resulting in a denial-of-service condition

Trust: 2.52

sources: NVD: CVE-2017-3876 // JVNDB: JVNDB-2017-004130 // CNVD: CNVD-2017-06812 // BID: 98284 // VULHUB: VHN-112079

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-06812

AFFECTED PRODUCTS

vendor:ciscomodel:ios xrscope:eqversion:6.1.1

Trust: 2.4

vendor:ciscomodel:ios xrscope:eqversion:6.1.0

Trust: 1.6

vendor:ciscomodel:ios xr softwarescope:eqversion:6.1.1

Trust: 0.9

vendor:ciscomodel:ios xr softwarescope:neversion:6.1.2

Trust: 0.3

sources: CNVD: CNVD-2017-06812 // BID: 98284 // JVNDB: JVNDB-2017-004130 // CNNVD: CNNVD-201705-221 // NVD: CVE-2017-3876

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-3876
value: HIGH

Trust: 1.0

NVD: CVE-2017-3876
value: HIGH

Trust: 0.8

CNVD: CNVD-2017-06812
value: HIGH

Trust: 0.6

CNNVD: CNNVD-201705-221
value: HIGH

Trust: 0.6

VULHUB: VHN-112079
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2017-3876
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2017-06812
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-112079
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-3876
baseSeverity: HIGH
baseScore: 7.5
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2017-06812 // VULHUB: VHN-112079 // JVNDB: JVNDB-2017-004130 // CNNVD: CNNVD-201705-221 // NVD: CVE-2017-3876

PROBLEMTYPE DATA

problemtype:CWE-399

Trust: 1.9

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: VULHUB: VHN-112079 // JVNDB: JVNDB-2017-004130 // NVD: CVE-2017-3876

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201705-221

TYPE

resource management error

Trust: 0.6

sources: CNNVD: CNNVD-201705-221

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-004130

PATCH
title:cisco-sa-20170503-ios-xrurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170503-ios-xr
Trust: 0.8
title:Patch for Cisco IOS Software Denial of Service Vulnerability (CNVD-2017-06812)url:https://www.cnvd.org.cn/patchInfo/show/93844
Trust: 0.6
title:Cisco IOS XR Software Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=69849
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2017-06812 // 
            
            
            
            JVNDB: JVNDB-2017-004130 // 
            
            
            
            CNNVD: CNNVD-201705-221

EXTERNAL IDS
db:NVDid:CVE-2017-3876
Trust: 3.4
db:BIDid:98284
Trust: 2.6
db:SECTRACKid:1038393
Trust: 1.7
db:JVNDBid:JVNDB-2017-004130
Trust: 0.8
db:CNNVDid:CNNVD-201705-221
Trust: 0.7
db:CNVDid:CNVD-2017-06812
Trust: 0.6
db:VULHUBid:VHN-112079
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-06812 // 
            
            
            
            VULHUB: VHN-112079 // 
            
            
            
            BID: 98284 // 
            
            
            
            JVNDB: JVNDB-2017-004130 // 
            
            
            
            CNNVD: CNNVD-201705-221 // 
            
            
            
            NVD: CVE-2017-3876

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170503-ios-xr
Trust: 2.6
url:http://www.securityfocus.com/bid/98284
Trust: 1.7
url:http://www.securitytracker.com/id/1038393
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-3876
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-3876
Trust: 0.8
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2017-06812 // 
            
            
            
            VULHUB: VHN-112079 // 
            
            
            
            BID: 98284 // 
            
            
            
            JVNDB: JVNDB-2017-004130 // 
            
            
            
            CNNVD: CNNVD-201705-221 // 
            
            
            
            NVD: CVE-2017-3876

CREDITS
Cisco
Trust: 0.9
sources:
            
            
            BID: 98284 // 
            
            
            
            CNNVD: CNNVD-201705-221

SOURCES
db:CNVDid:CNVD-2017-06812
db:VULHUBid:VHN-112079
db:BIDid:98284
db:JVNDBid:JVNDB-2017-004130
db:CNNVDid:CNNVD-201705-221
db:NVDid:CVE-2017-3876

LAST UPDATE DATE
2024-11-23T22:56:13.432000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2017-06812date:2017-05-17T00:00:00
db:VULHUBid:VHN-112079date:2019-10-03T00:00:00
db:BIDid:98284date:2017-05-18T16:18:00
db:JVNDBid:JVNDB-2017-004130date:2017-06-16T00:00:00
db:CNNVDid:CNNVD-201705-221date:2019-10-23T00:00:00
db:NVDid:CVE-2017-3876date:2024-11-21T03:26:17.723

SOURCES RELEASE DATE
db:CNVDid:CNVD-2017-06812date:2017-05-17T00:00:00
db:VULHUBid:VHN-112079date:2017-05-16T00:00:00
db:BIDid:98284date:2017-05-03T00:00:00
db:JVNDBid:JVNDB-2017-004130date:2017-06-16T00:00:00
db:CNNVDid:CNNVD-201705-221date:2017-05-04T00:00:00
db:NVDid:CVE-2017-3876date:2017-05-16T17:29:00.247