Description
A vulnerability in the Cisco Network Plug and Play application of Cisco IOS 12.4 through 15.6 and Cisco IOS XE 3.3 through 16.4 could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data by using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected software. An attacker could exploit this vulnerability by supplying a crafted certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt confidential information on user connections to the affected software. Cisco Bug IDs: CSCvc33171.
References (3)
Core 3
Core References
Vendor Advisory x_refsource_confirm
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-pnp
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/101065
Third Party Advisory, VDB Entry vdb-entry
x_refsource_sectrack
http://www.securitytracker.com/id/1039450
Scores
CVSS v3
5.9
EPSS
0.0100
EPSS Percentile
58.1%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-20
CWE-295
Status
published
Products (50)
cisco/ios
12.4\(25e\)jao3a
cisco/ios
12.4\(25e\)jao20s
cisco/ios
12.4\(25e\)jap1n
cisco/ios
12.4\(25e\)jap9
cisco/ios
15.0\(2\)ej
cisco/ios
15.0\(2\)ej1
cisco/ios
15.0\(2\)ex
cisco/ios
15.0\(2\)ex1
cisco/ios
15.0\(2\)ex2
cisco/ios
15.0\(2\)ex3
... and 40 more
Published
Sep 29, 2017
Tracked Since
Feb 18, 2026