How severe is CVE-2017-6615?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 6.3 out of 10.

What type of vulnerability is CVE-2017-6615?

This is classified as CWE-399, which is a common weakness in software security.

CVE-2017-6615

MEDIUM Year: 2017

CVSS v3 Score

6.3

Medium

CVSS v2 Score

6.3

Medium

Weakness Type

CWE-399

View all →

Vulnerability Description

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS XE 3.16 could allow an authenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability is due to a race condition that could occur when the affected software processes an SNMP read request that contains certain criteria for a specific object ID (OID) and an active crypto session is disconnected on an affected device. An attacker who can authenticate to an affected device could trigger this vulnerability by issuing an SNMP request for a specific OID on the device. A successful exploit will cause the device to restart due to an attempt to access an invalid memory region. The attacker does not control how or when crypto sessions are disconnected on the device. Cisco Bug IDs: CSCvb94392.

CVE-2018-0161

MEDIUM

CVSS:6.3(Medium)

A vulnerability in the Simple Network Management Protocol (SNMP) subsystem of Cisco IOS Software running on certain models of Cisco Catalyst Switches could allow an authenticated, remote attacker to c...

CWE-3992018

CVE-2015-1339

MEDIUM

CVSS:6.2(Medium)

Memory leak in the cuse_channel_release function in fs/fuse/cuse.c in the Linux kernel before 4.4 allows local users to cause a denial of service (memory consumption) or possibly have unspecified othe...

CWE-3992015

CVE-2015-6646

MEDIUM

CVSS:6.2(Medium)

The System V IPC implementation in the kernel in Android before 6.0 2016-01-01 allows attackers to cause a denial of service (global kernel resource consumption) by leveraging improper interaction bet...

CWE-3992015

CVE-2016-2847

MEDIUM

CVSS:6.2(Medium)

fs/pipe.c in the Linux kernel before 4.5 does not limit the amount of unread data in pipes, which allows local users to cause a denial of service (memory consumption) by creating many pipes with non-d...

CWE-3992016

CVE-2022-43380

MEDIUM

CVSS:6.2(Medium)

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1 could allow a non-privileged local user to exploit a vulnerability in the AIX NFS kernel extension to cause a denial of service. IBM X-Force ID: 238640.

CWE-3992022

CVE-2022-43381

MEDIUM

CVSS:6.2(Medium)

IBM AIX 7.1, 7.2, 7.3, and VIOS 3.1could allow a non-privileged local user to exploit a vulnerability in the AIX SMB client to cause a denial of service. IBM X-Force ID: 238639.

CWE-3992022

CVE-2017-6615

Vulnerability Description

Related Vulnerabilities

CVE-2018-0161

CVE-2015-1339

CVE-2015-6646

CVE-2016-2847

CVE-2022-43380

CVE-2022-43381