Sign-up

ID

VAR-201707-0900


CVE

CVE-2017-6728


TITLE

Cisco IOS XR Software CLI Vulnerable to arbitrary code execution

Trust: 0.8

sources: JVNDB: JVNDB-2017-005623

DESCRIPTION

A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary code at the root privilege level on an affected system, because of Incorrect Permissions. More Information: CSCvb99389. Known Affected Releases: 6.2.1.BASE. Known Fixed Releases: 6.3.1.15i.BASE 6.2.3.1i.BASE 6.2.2.15i.BASE 6.1.4.10i.BASE. Cisco IOS is the interconnected network operating system used on most Cisco system routers and network switches. A local attacker may exploit this issue to gain elevated root privileges on the affected system. This issue is being tracked by Cisco Bug ID CSCvb99389

Trust: 2.52

sources: NVD: CVE-2017-6728 // JVNDB: JVNDB-2017-005623 // CNVD: CNVD-2017-22328 // BID: 99464 // VULHUB: VHN-114931

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-22328

AFFECTED PRODUCTS

vendor:ciscomodel:ios xrscope:eqversion: -

Trust: 1.6

vendor:ciscomodel:asr series aggregation services routers 6.2.1.basescope:eqversion:9000

Trust: 0.9

vendor:ciscomodel:ios xrscope: - version: -

Trust: 0.8

vendor:ciscomodel:ios xr softwarescope: - version: -

Trust: 0.6

vendor:ciscomodel:ios xr softwarescope:eqversion:0

Trust: 0.3

vendor:ciscomodel:asr series aggregation services routers 6.3.1.15i.basescope:neversion:9000

Trust: 0.3

vendor:ciscomodel:asr series aggregation services routers 6.2.3.1i.basescope:neversion:9000

Trust: 0.3

vendor:ciscomodel:asr series aggregation services routers 6.2.2.15i.basescope:neversion:9000

Trust: 0.3

sources: CNVD: CNVD-2017-22328 // BID: 99464 // JVNDB: JVNDB-2017-005623 // CNNVD: CNNVD-201707-393 // NVD: CVE-2017-6728

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-6728
value: HIGH

Trust: 1.0

NVD: CVE-2017-6728
value: HIGH

Trust: 0.8

CNVD: CNVD-2017-22328
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201707-393
value: HIGH

Trust: 0.6

VULHUB: VHN-114931
value: MEDIUM

Trust: 0.1

nvd@nist.gov: CVE-2017-6728
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2017-22328
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-114931
severity: MEDIUM
baseScore: 6.9
vectorString: AV:L/AC:M/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: MEDIUM
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 3.4
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-6728
baseSeverity: HIGH
baseScore: 7.0
vectorString: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.0
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2017-22328 // VULHUB: VHN-114931 // JVNDB: JVNDB-2017-005623 // CNNVD: CNNVD-201707-393 // NVD: CVE-2017-6728

PROBLEMTYPE DATA

problemtype:CWE-269

Trust: 1.1

problemtype:CWE-264

Trust: 0.9

sources: VULHUB: VHN-114931 // JVNDB: JVNDB-2017-005623 // NVD: CVE-2017-6728

THREAT TYPE

local

Trust: 0.9

sources: BID: 99464 // CNNVD: CNNVD-201707-393

TYPE

permissions and access control issues

Trust: 0.6

sources: CNNVD: CNNVD-201707-393

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-005623

PATCH
title:cisco-sa-20170705-iosurl:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170705-ios
Trust: 0.8
title:Patch for Cisco IOSXR Local Privilege Escalation Vulnerabilityurl:https://www.cnvd.org.cn/patchInfo/show/100557
Trust: 0.6
title:Cisco IOS XR Software Fixes for permission permissions and access control vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=71591
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2017-22328 // 
            
            
            
            JVNDB: JVNDB-2017-005623 // 
            
            
            
            CNNVD: CNNVD-201707-393

EXTERNAL IDS
db:NVDid:CVE-2017-6728
Trust: 3.4
db:BIDid:99464
Trust: 2.6
db:SECTRACKid:1038821
Trust: 2.3
db:JVNDBid:JVNDB-2017-005623
Trust: 0.8
db:CNNVDid:CNNVD-201707-393
Trust: 0.7
db:CNVDid:CNVD-2017-22328
Trust: 0.6
db:VULHUBid:VHN-114931
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-22328 // 
            
            
            
            VULHUB: VHN-114931 // 
            
            
            
            BID: 99464 // 
            
            
            
            JVNDB: JVNDB-2017-005623 // 
            
            
            
            CNNVD: CNNVD-201707-393 // 
            
            
            
            NVD: CVE-2017-6728

REFERENCES
url:https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170705-ios
Trust: 2.0
url:http://www.securityfocus.com/bid/99464
Trust: 1.7
url:http://www.securitytracker.com/id/1038821
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-6728
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-6728
Trust: 0.8
url:http://securitytracker.com/id/1038821
Trust: 0.6
url:http://www.cisco.com/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2017-22328 // 
            
            
            
            VULHUB: VHN-114931 // 
            
            
            
            BID: 99464 // 
            
            
            
            JVNDB: JVNDB-2017-005623 // 
            
            
            
            CNNVD: CNNVD-201707-393 // 
            
            
            
            NVD: CVE-2017-6728

CREDITS
Cisco.
Trust: 0.3
sources:
            
            
            BID: 99464

SOURCES
db:CNVDid:CNVD-2017-22328
db:VULHUBid:VHN-114931
db:BIDid:99464
db:JVNDBid:JVNDB-2017-005623
db:CNNVDid:CNNVD-201707-393
db:NVDid:CVE-2017-6728

LAST UPDATE DATE
2024-11-23T22:30:42.130000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2017-22328date:2017-08-22T00:00:00
db:VULHUBid:VHN-114931date:2019-10-03T00:00:00
db:BIDid:99464date:2017-07-05T00:00:00
db:JVNDBid:JVNDB-2017-005623date:2017-08-02T00:00:00
db:CNNVDid:CNNVD-201707-393date:2019-10-23T00:00:00
db:NVDid:CVE-2017-6728date:2024-11-21T03:30:23.547

SOURCES RELEASE DATE
db:CNVDid:CNVD-2017-22328date:2017-08-22T00:00:00
db:VULHUBid:VHN-114931date:2017-07-10T00:00:00
db:BIDid:99464date:2017-07-05T00:00:00
db:JVNDBid:JVNDB-2017-005623date:2017-08-02T00:00:00
db:CNNVDid:CNNVD-201707-393date:2017-07-11T00:00:00
db:NVDid:CVE-2017-6728date:2017-07-10T20:29:00.517