medium
5.9
CWE
295 20
Advisory Published
Updated

CVE-2017-12228: Input Validation

First published: Fri Sep 29 2017(Updated: )

A vulnerability in the Cisco Network Plug and Play application of Cisco IOS 12.4 through 15.6 and Cisco IOS XE 3.3 through 16.4 could allow an unauthenticated, remote attacker to gain unauthorized access to sensitive data by using an invalid certificate. The vulnerability is due to insufficient certificate validation by the affected software. An attacker could exploit this vulnerability by supplying a crafted certificate to an affected device. A successful exploit could allow the attacker to conduct man-in-the-middle attacks to decrypt confidential information on user connections to the affected software. Cisco Bug IDs: CSCvc33171.

Credit: ykramarz@cisco.com

Affected SoftwareAffected VersionHow to fix
Cisco IOS=12.4\(25e\)jao3a
Cisco IOS=12.4\(25e\)jao20s
Cisco IOS=12.4\(25e\)jap1n
Cisco IOS=12.4\(25e\)jap9
Cisco IOS=15.0\(2\)ej
Cisco IOS=15.0\(2\)ej1
Cisco IOS=15.0\(2\)ex
Cisco IOS=15.0\(2\)ex1
Cisco IOS=15.0\(2\)ex2
Cisco IOS=15.0\(2\)ex3
Cisco IOS=15.0\(2\)ex4
Cisco IOS=15.0\(2\)ex5
Cisco IOS=15.0\(2\)ex8
Cisco IOS=15.0\(2\)ex10
Cisco IOS=15.0\(2\)ex13
Cisco IOS=15.0\(2\)ez
Cisco IOS=15.0\(2\)se1
Cisco IOS=15.0\(2\)se2
Cisco IOS=15.0\(2\)se3
Cisco IOS=15.0\(2\)se4
Cisco IOS=15.0\(2\)se5
Cisco IOS=15.0\(2\)se6
Cisco IOS=15.0\(2\)se7
Cisco IOS=15.0\(2\)se8
Cisco IOS=15.0\(2\)se9
Cisco IOS=15.0\(2\)se10
Cisco IOS=15.0\(2\)se10a
Cisco IOS=15.0\(2\)sqd7
Cisco IOS=15.0\(2a\)ex5
Cisco IOS=15.0\(2a\)se9
Cisco IOS=15.1\(1\)sy
Cisco IOS=15.1\(1\)sy1
Cisco IOS=15.1\(1\)sy2
Cisco IOS=15.1\(1\)sy3
Cisco IOS=15.1\(1\)sy4
Cisco IOS=15.1\(1\)sy5
Cisco IOS=15.1\(1\)sy6
Cisco IOS=15.1\(2\)sg7a
Cisco IOS=15.1\(2\)sy
Cisco IOS=15.1\(2\)sy1
Cisco IOS=15.1\(2\)sy2
Cisco IOS=15.1\(2\)sy3
Cisco IOS=15.1\(2\)sy4
Cisco IOS=15.1\(2\)sy4a
Cisco IOS=15.1\(2\)sy5
Cisco IOS=15.1\(2\)sy6
Cisco IOS=15.1\(2\)sy7
Cisco IOS=15.1\(2\)sy8
Cisco IOS=15.1\(2\)sy9
Cisco IOS=15.1\(2\)sy10
Cisco IOS=15.2\(1\)e
Cisco IOS=15.2\(1\)e1
Cisco IOS=15.2\(1\)e2
Cisco IOS=15.2\(1\)e3
Cisco IOS=15.2\(1\)ey
Cisco IOS=15.2\(1\)sy
Cisco IOS=15.2\(1\)sy0a
Cisco IOS=15.2\(1\)sy1
Cisco IOS=15.2\(1\)sy1a
Cisco IOS=15.2\(1\)sy2
Cisco IOS=15.2\(1\)sy3
Cisco IOS=15.2\(1\)sy4
Cisco IOS=15.2\(2\)e
Cisco IOS=15.2\(2\)e1
Cisco IOS=15.2\(2\)e2
Cisco IOS=15.2\(2\)e3
Cisco IOS=15.2\(2\)e4
Cisco IOS=15.2\(2\)e5
Cisco IOS=15.2\(2\)e5a
Cisco IOS=15.2\(2\)e5b
Cisco IOS=15.2\(2\)e6
Cisco IOS=15.2\(2\)ea1
Cisco IOS=15.2\(2\)ea2
Cisco IOS=15.2\(2\)ea3
Cisco IOS=15.2\(2\)eb
Cisco IOS=15.2\(2\)eb1
Cisco IOS=15.2\(2\)eb2
Cisco IOS=15.2\(2\)gc
Cisco IOS=15.2\(2\)ja
Cisco IOS=15.2\(2\)ja1
Cisco IOS=15.2\(2\)jax
Cisco IOS=15.2\(2\)jax1
Cisco IOS=15.2\(2\)jb
Cisco IOS=15.2\(2\)jb2
Cisco IOS=15.2\(2\)jb3
Cisco IOS=15.2\(2\)jb4
Cisco IOS=15.2\(2\)jb5
Cisco IOS=15.2\(2\)jb6
Cisco IOS=15.2\(2\)jn1
Cisco IOS=15.2\(2\)jn2
Cisco IOS=15.2\(2\)s
Cisco IOS=15.2\(2\)s0a
Cisco IOS=15.2\(2\)s0c
Cisco IOS=15.2\(2\)s1
Cisco IOS=15.2\(2\)s2
Cisco IOS=15.2\(2\)sng
Cisco IOS=15.2\(2\)snh1
Cisco IOS=15.2\(2\)sni
Cisco IOS=15.2\(2\)sy
Cisco IOS=15.2\(2\)sy1
Cisco IOS=15.2\(2\)sy2
Cisco IOS=15.2\(2\)t
Cisco IOS=15.2\(2\)t1
Cisco IOS=15.2\(2\)t2
Cisco IOS=15.2\(2\)t3
Cisco IOS=15.2\(2\)t4
Cisco IOS=15.2\(2a\)e1
Cisco IOS=15.2\(2a\)e2
Cisco IOS=15.2\(3\)e
Cisco IOS=15.2\(3\)e1
Cisco IOS=15.2\(3\)e2
Cisco IOS=15.2\(3\)e3
Cisco IOS=15.2\(3\)e4
Cisco IOS=15.2\(3\)e5
Cisco IOS=15.2\(3\)ea
Cisco IOS=15.2\(3\)ex
Cisco IOS=15.2\(3\)gc
Cisco IOS=15.2\(3\)gc1
Cisco IOS=15.2\(3\)t
Cisco IOS=15.2\(3\)t1
Cisco IOS=15.2\(3\)t2
Cisco IOS=15.2\(3\)t3
Cisco IOS=15.2\(3\)t4
Cisco IOS=15.2\(3a\)e
Cisco IOS=15.2\(3m\)e2
Cisco IOS=15.2\(3m\)e3
Cisco IOS=15.2\(3m\)e8
Cisco IOS=15.2\(4\)e
Cisco IOS=15.2\(4\)e1
Cisco IOS=15.2\(4\)e2
Cisco IOS=15.2\(4\)e3
Cisco IOS=15.2\(4\)e4
Cisco IOS=15.2\(4\)ea
Cisco IOS=15.2\(4\)ea1
Cisco IOS=15.2\(4\)ea3
Cisco IOS=15.2\(4\)ea4
Cisco IOS=15.2\(4\)ea5
Cisco IOS=15.2\(4\)ec
Cisco IOS=15.2\(4\)ec1
Cisco IOS=15.2\(4\)ec2
Cisco IOS=15.2\(4\)gc
Cisco IOS=15.2\(4\)gc1
Cisco IOS=15.2\(4\)gc2
Cisco IOS=15.2\(4\)gc3
Cisco IOS=15.2\(4\)ja
Cisco IOS=15.2\(4\)ja1
Cisco IOS=15.2\(4\)jb
Cisco IOS=15.2\(4\)jb1
Cisco IOS=15.2\(4\)jb2
Cisco IOS=15.2\(4\)jb3
Cisco IOS=15.2\(4\)jb3a
Cisco IOS=15.2\(4\)jb3b
Cisco IOS=15.2\(4\)jb3h
Cisco IOS=15.2\(4\)jb3s
Cisco IOS=15.2\(4\)jb4
Cisco IOS=15.2\(4\)jb5
Cisco IOS=15.2\(4\)jb5h
Cisco IOS=15.2\(4\)jb5m
Cisco IOS=15.2\(4\)jb6
Cisco IOS=15.2\(4\)jb7
Cisco IOS=15.2\(4\)jn
Cisco IOS=15.2\(4\)m
Cisco IOS=15.2\(4\)m1
Cisco IOS=15.2\(4\)m2
Cisco IOS=15.2\(4\)m3
Cisco IOS=15.2\(4\)m4
Cisco IOS=15.2\(4\)m5
Cisco IOS=15.2\(4\)m6
Cisco IOS=15.2\(4\)m6a
Cisco IOS=15.2\(4\)m7
Cisco IOS=15.2\(4\)m8
Cisco IOS=15.2\(4\)m9
Cisco IOS=15.2\(4\)m10
Cisco IOS=15.2\(4\)m11
Cisco IOS=15.2\(4\)s
Cisco IOS=15.2\(4\)s1
Cisco IOS=15.2\(4\)s2
Cisco IOS=15.2\(4\)s3
Cisco IOS=15.2\(4\)s3a
Cisco IOS=15.2\(4\)s4
Cisco IOS=15.2\(4\)s4a
Cisco IOS=15.2\(4\)s5
Cisco IOS=15.2\(4\)s6
Cisco IOS=15.2\(4\)s7
Cisco IOS=15.2\(4m\)e1
Cisco IOS=15.2\(4m\)e3
Cisco IOS=15.2\(4n\)e2
Cisco IOS=15.2\(4o\)e2
Cisco IOS=15.2\(4p\)e1
Cisco IOS=15.2\(5\)e
Cisco IOS=15.2\(5\)e1
Cisco IOS=15.2\(5\)e2a
Cisco IOS=15.2\(5\)e2b
Cisco IOS=15.2\(5\)ea
Cisco IOS=15.2\(5\)ex
Cisco IOS=15.2\(5a\)e
Cisco IOS=15.2\(5a\)e1
Cisco IOS=15.2\(5b\)e
Cisco IOS=15.2\(5c\)e
Cisco IOS=15.3\(1\)s
Cisco IOS=15.3\(1\)s1
Cisco IOS=15.3\(1\)s2
Cisco IOS=15.3\(1\)sy
Cisco IOS=15.3\(1\)sy1
Cisco IOS=15.3\(1\)sy2
Cisco IOS=15.3\(1\)t
Cisco IOS=15.3\(1\)t1
Cisco IOS=15.3\(1\)t2
Cisco IOS=15.3\(1\)t3
Cisco IOS=15.3\(1\)t4
Cisco IOS=15.3\(2\)s
Cisco IOS=15.3\(2\)s1
Cisco IOS=15.3\(2\)s2
Cisco IOS=15.3\(2\)t
Cisco IOS=15.3\(2\)t1
Cisco IOS=15.3\(2\)t2
Cisco IOS=15.3\(2\)t3
Cisco IOS=15.3\(2\)t4
Cisco IOS=15.3\(3\)ja
Cisco IOS=15.3\(3\)ja1
Cisco IOS=15.3\(3\)ja1m
Cisco IOS=15.3\(3\)ja1n
Cisco IOS=15.3\(3\)ja4
Cisco IOS=15.3\(3\)ja5
Cisco IOS=15.3\(3\)ja6
Cisco IOS=15.3\(3\)ja7
Cisco IOS=15.3\(3\)ja8
Cisco IOS=15.3\(3\)ja10
Cisco IOS=15.3\(3\)ja11
Cisco IOS=15.3\(3\)ja76
Cisco IOS=15.3\(3\)ja77
Cisco IOS=15.3\(3\)jaa
Cisco IOS=15.3\(3\)jab
Cisco IOS=15.3\(3\)jax
Cisco IOS=15.3\(3\)jax1
Cisco IOS=15.3\(3\)jax2
Cisco IOS=15.3\(3\)jb
Cisco IOS=15.3\(3\)jb75
Cisco IOS=15.3\(3\)jbb
Cisco IOS=15.3\(3\)jbb1
Cisco IOS=15.3\(3\)jbb2
Cisco IOS=15.3\(3\)jbb4
Cisco IOS=15.3\(3\)jbb5
Cisco IOS=15.3\(3\)jbb6
Cisco IOS=15.3\(3\)jbb6a
Cisco IOS=15.3\(3\)jbb8
Cisco IOS=15.3\(3\)jbb50
Cisco IOS=15.3\(3\)jc
Cisco IOS=15.3\(3\)jc1
Cisco IOS=15.3\(3\)jc2
Cisco IOS=15.3\(3\)jc3
Cisco IOS=15.3\(3\)jc4
Cisco IOS=15.3\(3\)jc5
Cisco IOS=15.3\(3\)jc6
Cisco IOS=15.3\(3\)jc7
Cisco IOS=15.3\(3\)jc50
Cisco IOS=15.3\(3\)jc51
Cisco IOS=15.3\(3\)jca7
Cisco IOS=15.3\(3\)jd
Cisco IOS=15.3\(3\)jd2
Cisco IOS=15.3\(3\)jd3
Cisco IOS=15.3\(3\)jd4
Cisco IOS=15.3\(3\)jda3
Cisco IOS=15.3\(3\)je
Cisco IOS=15.3\(3\)je1
Cisco IOS=15.3\(3\)jn3
Cisco IOS=15.3\(3\)jn4
Cisco IOS=15.3\(3\)jn7
Cisco IOS=15.3\(3\)jn8
Cisco IOS=15.3\(3\)jn9
Cisco IOS=15.3\(3\)jnb
Cisco IOS=15.3\(3\)jnb1
Cisco IOS=15.3\(3\)jnb2
Cisco IOS=15.3\(3\)jnb3
Cisco IOS=15.3\(3\)jnb4
Cisco IOS=15.3\(3\)jnb6
Cisco IOS=15.3\(3\)jnc
Cisco IOS=15.3\(3\)jnc1
Cisco IOS=15.3\(3\)jnc4
Cisco IOS=15.3\(3\)jnd
Cisco IOS=15.3\(3\)jnd1
Cisco IOS=15.3\(3\)jnd2
Cisco IOS=15.3\(3\)jnd3
Cisco IOS=15.3\(3\)jnp
Cisco IOS=15.3\(3\)jnp1
Cisco IOS=15.3\(3\)jnp2
Cisco IOS=15.3\(3\)jpb
Cisco IOS=15.3\(3\)jpb1
Cisco IOS=15.3\(3\)jpb2
Cisco IOS=15.3\(3\)jpc2
Cisco IOS=15.3\(3\)jpc3
Cisco IOS=15.3\(3\)jpd
Cisco IOS=15.3\(3\)m
Cisco IOS=15.3\(3\)m1
Cisco IOS=15.3\(3\)m2
Cisco IOS=15.3\(3\)m3
Cisco IOS=15.3\(3\)m4
Cisco IOS=15.3\(3\)m5
Cisco IOS=15.3\(3\)m6
Cisco IOS=15.3\(3\)m7
Cisco IOS=15.3\(3\)m8
Cisco IOS=15.3\(3\)m8a
Cisco IOS=15.3\(3\)m9
Cisco IOS=15.3\(3\)s
Cisco IOS=15.3\(3\)s1
Cisco IOS=15.3\(3\)s1a
Cisco IOS=15.3\(3\)s2
Cisco IOS=15.3\(3\)s3
Cisco IOS=15.3\(3\)s4
Cisco IOS=15.3\(3\)s5
Cisco IOS=15.3\(3\)s6
Cisco IOS=15.3\(3\)s7
Cisco IOS=15.3\(3\)s8
Cisco IOS=15.3\(3\)s8a
Cisco IOS=15.3\(3\)s9
Cisco IOS=15.4\(1\)cg
Cisco IOS=15.4\(1\)cg1
Cisco IOS=15.4\(1\)s
Cisco IOS=15.4\(1\)s1
Cisco IOS=15.4\(1\)s2
Cisco IOS=15.4\(1\)s3
Cisco IOS=15.4\(1\)s4
Cisco IOS=15.4\(1\)sy
Cisco IOS=15.4\(1\)sy1
Cisco IOS=15.4\(1\)sy2
Cisco IOS=15.4\(1\)t
Cisco IOS=15.4\(1\)t1
Cisco IOS=15.4\(1\)t2
Cisco IOS=15.4\(1\)t3
Cisco IOS=15.4\(1\)t4
Cisco IOS=15.4\(2\)cg
Cisco IOS=15.4\(2\)s
Cisco IOS=15.4\(2\)s1
Cisco IOS=15.4\(2\)s2
Cisco IOS=15.4\(2\)s3
Cisco IOS=15.4\(2\)s4
Cisco IOS=15.4\(2\)t
Cisco IOS=15.4\(2\)t1
Cisco IOS=15.4\(2\)t2
Cisco IOS=15.4\(2\)t3
Cisco IOS=15.4\(2\)t4
Cisco IOS=15.4\(3\)m
Cisco IOS=15.4\(3\)m1
Cisco IOS=15.4\(3\)m2
Cisco IOS=15.4\(3\)m3
Cisco IOS=15.4\(3\)m4
Cisco IOS=15.4\(3\)m5
Cisco IOS=15.4\(3\)m6
Cisco IOS=15.4\(3\)m6a
Cisco IOS=15.4\(3\)m7
Cisco IOS=15.4\(3\)s
Cisco IOS=15.4\(3\)s1
Cisco IOS=15.4\(3\)s2
Cisco IOS=15.4\(3\)s3
Cisco IOS=15.4\(3\)s4
Cisco IOS=15.4\(3\)s5
Cisco IOS=15.4\(3\)s5a
Cisco IOS=15.4\(3\)s6
Cisco IOS=15.4\(3\)s6a
Cisco IOS=15.4\(3\)s6b
Cisco IOS=15.4\(3\)s7
Cisco IOS=15.4\(3\)s7a
Cisco IOS=15.5\(1\)s
Cisco IOS=15.5\(1\)s1
Cisco IOS=15.5\(1\)s2
Cisco IOS=15.5\(1\)s3
Cisco IOS=15.5\(1\)s4
Cisco IOS=15.5\(1\)sy
Cisco IOS=15.5\(1\)sy1
Cisco IOS=15.5\(1\)t
Cisco IOS=15.5\(1\)t1
Cisco IOS=15.5\(1\)t2
Cisco IOS=15.5\(1\)t3
Cisco IOS=15.5\(1\)t4
Cisco IOS=15.5\(2\)s
Cisco IOS=15.5\(2\)s1
Cisco IOS=15.5\(2\)s2
Cisco IOS=15.5\(2\)s3
Cisco IOS=15.5\(2\)s4
Cisco IOS=15.5\(2\)t
Cisco IOS=15.5\(2\)t1
Cisco IOS=15.5\(2\)t2
Cisco IOS=15.5\(2\)t3
Cisco IOS=15.5\(2\)t4
Cisco IOS=15.5\(3\)m
Cisco IOS=15.5\(3\)m0a
Cisco IOS=15.5\(3\)m1
Cisco IOS=15.5\(3\)m2
Cisco IOS=15.5\(3\)m3
Cisco IOS=15.5\(3\)m4
Cisco IOS=15.5\(3\)m4a
Cisco IOS=15.5\(3\)m5
Cisco IOS=15.5\(3\)s
Cisco IOS=15.5\(3\)s0a
Cisco IOS=15.5\(3\)s1
Cisco IOS=15.5\(3\)s1a
Cisco IOS=15.5\(3\)s2
Cisco IOS=15.5\(3\)s2a
Cisco IOS=15.5\(3\)s2b
Cisco IOS=15.5\(3\)s3
Cisco IOS=15.5\(3\)s3a
Cisco IOS=15.5\(3\)s4
Cisco IOS=15.5\(3\)s4a
Cisco IOS=15.5\(3\)s4b
Cisco IOS=15.5\(3\)s4d
Cisco IOS=15.5\(3\)s5
Cisco IOS=15.5\(3\)sn
Cisco IOS=15.6\(1\)s
Cisco IOS=15.6\(1\)s1
Cisco IOS=15.6\(1\)s1a
Cisco IOS=15.6\(1\)s2
Cisco IOS=15.6\(1\)s3
Cisco IOS=15.6\(1\)t
Cisco IOS=15.6\(1\)t0a
Cisco IOS=15.6\(1\)t1
Cisco IOS=15.6\(1\)t2
Cisco IOS=15.6\(1\)t3
Cisco IOS=15.6\(2\)s
Cisco IOS=15.6\(2\)s0a
Cisco IOS=15.6\(2\)s1
Cisco IOS=15.6\(2\)s2
Cisco IOS=15.6\(2\)s3
Cisco IOS=15.6\(2\)sn
Cisco IOS=15.6\(2\)sp
Cisco IOS=15.6\(2\)sp1
Cisco IOS=15.6\(2\)sp1b
Cisco IOS=15.6\(2\)sp1c
Cisco IOS=15.6\(2\)sp2
Cisco IOS=15.6\(2\)sp2a
Cisco IOS=15.6\(2\)t
Cisco IOS=15.6\(2\)t1
Cisco IOS=15.6\(2\)t2
Cisco IOS=15.6\(3\)m
Cisco IOS=15.6\(3\)m0a
Cisco IOS=15.6\(3\)m1
Cisco IOS=15.6\(3\)m1b
Cisco IOS XE<=15.4\(3\)s
Cisco IOS XE=3.3.0xo
Cisco IOS XE=3.3.1xo
Cisco IOS XE=3.3.2xo
Cisco IOS XE=3.5.0e
Cisco IOS XE=3.5.1e
Cisco IOS XE=3.5.2e
Cisco IOS XE=3.5.3e
Cisco IOS XE=3.6.0e
Cisco IOS XE=3.6.0s
Cisco IOS XE=3.6.1e
Cisco IOS XE=3.6.1s
Cisco IOS XE=3.6.2ae
Cisco IOS XE=3.6.2e
Cisco IOS XE=3.6.2s
Cisco IOS XE=3.6.3e
Cisco IOS XE=3.6.4e
Cisco IOS XE=3.6.5ae
Cisco IOS XE=3.6.5be
Cisco IOS XE=3.6.5e
Cisco IOS XE=3.6.6e
Cisco IOS XE=3.7.0bs
Cisco IOS XE=3.7.0e
Cisco IOS XE=3.7.0s
Cisco IOS XE=3.7.1as
Cisco IOS XE=3.7.1e
Cisco IOS XE=3.7.1s
Cisco IOS XE=3.7.2e
Cisco IOS XE=3.7.2s
Cisco IOS XE=3.7.2ts
Cisco IOS XE=3.7.3e
Cisco IOS XE=3.7.3s
Cisco IOS XE=3.7.4as
Cisco IOS XE=3.7.4e
Cisco IOS XE=3.7.4s
Cisco IOS XE=3.7.5e
Cisco IOS XE=3.7.5s
Cisco IOS XE=3.7.6s
Cisco IOS XE=3.7.7s
Cisco IOS XE=3.8.0e
Cisco IOS XE=3.8.0ex
Cisco IOS XE=3.8.0s
Cisco IOS XE=3.8.1e
Cisco IOS XE=3.8.1s
Cisco IOS XE=3.8.2e
Cisco IOS XE=3.8.2s
Cisco IOS XE=3.8.3e
Cisco IOS XE=3.8.4e
Cisco IOS XE=3.9.0as
Cisco IOS XE=3.9.0e
Cisco IOS XE=3.9.0s
Cisco IOS XE=3.9.1as
Cisco IOS XE=3.9.1e
Cisco IOS XE=3.9.1s
Cisco IOS XE=3.9.2s
Cisco IOS XE=3.10.0s
Cisco IOS XE=3.10.1s
Cisco IOS XE=3.10.1xbs
Cisco IOS XE=3.10.2s
Cisco IOS XE=3.10.2ts
Cisco IOS XE=3.10.3s
Cisco IOS XE=3.10.4s
Cisco IOS XE=3.10.5s
Cisco IOS XE=3.10.6s
Cisco IOS XE=3.10.7s
Cisco IOS XE=3.10.8as
Cisco IOS XE=3.10.8s
Cisco IOS XE=3.10.9s
Cisco IOS XE=3.11.0s
Cisco IOS XE=3.11.1s
Cisco IOS XE=3.11.2s
Cisco IOS XE=3.11.3s
Cisco IOS XE=3.11.4s
Cisco IOS XE=3.12.0as
Cisco IOS XE=3.12.0s
Cisco IOS XE=3.12.1s
Cisco IOS XE=3.12.2s
Cisco IOS XE=3.12.3s
Cisco IOS XE=3.12.4s
Cisco IOS XE=3.13.0as
Cisco IOS XE=3.13.0s
Cisco IOS XE=3.13.1s
Cisco IOS XE=3.13.2as
Cisco IOS XE=3.13.2s
Cisco IOS XE=3.13.3s
Cisco IOS XE=3.13.4s
Cisco IOS XE=3.13.5as
Cisco IOS XE=3.13.5s
Cisco IOS XE=3.13.6as
Cisco IOS XE=3.13.6s
Cisco IOS XE=3.13.7as
Cisco IOS XE=3.13.7s
Cisco IOS XE=3.14.0s
Cisco IOS XE=3.14.1s
Cisco IOS XE=3.14.2s
Cisco IOS XE=3.14.3s
Cisco IOS XE=3.14.4s
Cisco IOS XE=3.15.0s
Cisco IOS XE=3.15.1cs
Cisco IOS XE=3.15.1s
Cisco IOS XE=3.15.2s
Cisco IOS XE=3.15.3s
Cisco IOS XE=3.15.4s
Cisco IOS XE=3.16.0cs
Cisco IOS XE=3.16.0s
Cisco IOS XE=3.16.1as
Cisco IOS XE=3.16.1s
Cisco IOS XE=3.16.2as
Cisco IOS XE=3.16.2bs
Cisco IOS XE=3.16.2s
Cisco IOS XE=3.16.3as
Cisco IOS XE=3.16.3s
Cisco IOS XE=3.16.4as
Cisco IOS XE=3.16.4bs
Cisco IOS XE=3.16.4ds
Cisco IOS XE=3.16.4s
Cisco IOS XE=3.16.5s
Cisco IOS XE=3.17.0s
Cisco IOS XE=3.17.1as
Cisco IOS XE=3.17.1s
Cisco IOS XE=3.17.3s
Cisco IOS XE=3.18.0as
Cisco IOS XE=3.18.0s
Cisco IOS XE=3.18.0sp
Cisco IOS XE=3.18.1asp
Cisco IOS XE=3.18.1bsp
Cisco IOS XE=3.18.1csp
Cisco IOS XE=3.18.1s
Cisco IOS XE=3.18.1sp
Cisco IOS XE=3.18.2s
Cisco IOS XE=3.18.2sp
Cisco IOS XE=3.18.3vs
Cisco IOS XE=16.1.1
Cisco IOS XE=16.1.2
Cisco IOS XE=16.1.3
Cisco IOS XE=16.1.3a
Cisco IOS XE=16.1.4
Cisco IOS XE=16.2.1
Cisco IOS XE=16.2.2
Cisco IOS XE=16.2.2a
Cisco IOS XE=16.2.3
Cisco IOS XE=16.3.1
Cisco IOS XE=16.3.1a
Cisco IOS XE=16.3.2
Cisco IOS XE=16.4.1

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is the severity of CVE-2017-12228?

    CVE-2017-12228 has a severity rating of high, as it allows unauthorized access to sensitive data.

  • How do I fix CVE-2017-12228?

    To mitigate CVE-2017-12228, upgrade to a fixed version of the Cisco IOS or IOS XE software as recommended by Cisco.

  • What are the affected versions in CVE-2017-12228?

    CVE-2017-12228 affects Cisco IOS versions from 12.4 through 15.6 and Cisco IOS XE versions from 3.3 through 16.4.

  • Who can exploit CVE-2017-12228?

    CVE-2017-12228 can be exploited by unauthenticated, remote attackers using an invalid certificate.

  • What type of vulnerability is CVE-2017-12228?

    CVE-2017-12228 is a certificate validation flaw that results in insufficient certificate verification.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203