CVE-2017-6727

MEDIUM

Cisco WAAS <6.2.3a - DoS

Title source: llm

Description

A vulnerability in the Server Message Block (SMB) protocol of Cisco Wide Area Application Services (WAAS) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device due to a process restarting unexpectedly and creating Core Dump files. More Information: CSCvc63035. Known Affected Releases: 6.2(3a). Known Fixed Releases: 6.3(0.167) 6.2(3c)5 6.2(3.22).

References (3)

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/99483

[Third Party Advisory, VDB Entry] http://www.securitytracker.com/id/1038824

[Vendor Advisory] https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170705-waas

Scores

CVSS v3 5.3

EPSS 0.0082

EPSS Percentile 74.2%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Details

CWE

CWE-20

Status published

Products (2)

cisco/wide_area_application_services

n/a/Cisco Wide Area Application Services < Cisco Wide Area Application Services

Published Jul 10, 2017

Tracked Since Feb 18, 2026