What is the severity of CVE-2017-6664?

The CVE-2017-6664 vulnerability has a critical severity level due to potential unauthorized remote access.

How do I fix CVE-2017-6664?

To fix CVE-2017-6664, upgrade to a patched version of Cisco IOS XE software that addresses this vulnerability.

What systems are affected by CVE-2017-6664?

CVE-2017-6664 affects various versions of Cisco IOS XE, including 3.10.8as, 3.12.x, 3.13.x, and 3.14.x series among others.

Who can exploit CVE-2017-6664?

An unauthenticated, remote autonomic node can exploit CVE-2017-6664 to gain access to the Autonomic Networking infrastructure.

What impact does CVE-2017-6664 have on my network?

CVE-2017-6664 may allow unauthorized access to network configuration, potentially compromising the integrity and security of affected devices.

Vulnerability/
CVE-2017-6664

high

7.5

CWE

295

7/8/2017

3/10/2019

CVE-2017-6664

First published: Mon Aug 07 2017(Updated: )

A vulnerability in the Autonomic Networking feature of Cisco IOS XE Software could allow an unauthenticated, remote, autonomic node to access the Autonomic Networking infrastructure of an affected system, after the certificate for the autonomic node has been revoked. This vulnerability affected devices that are running Release 16.x of Cisco IOS XE Software and are configured to use Autonomic Networking. This vulnerability does not affect devices that are running an earlier release of Cisco IOS XE Software or devices that are not configured to use Autonomic Networking. More Information: CSCvd22328. Known Affected Releases: 15.5(1)S3.1 Denali-16.2.1.

Credit: ykramarz@cisco.com

Affected Software	Affected Version	How to fix
Cisco IOS XE Web UI	=3.10.8as
Cisco IOS XE Web UI	=3.10.8s
Cisco IOS XE Web UI	=3.12.0s
Cisco IOS XE Web UI	=3.12.1s
Cisco IOS XE Web UI	=3.12.2s
Cisco IOS XE Web UI	=3.12.3s
Cisco IOS XE Web UI	=3.12.4s
Cisco IOS XE Web UI	=3.13.1s
Cisco IOS XE Web UI	=3.13.2s
Cisco IOS XE Web UI	=3.13.4s
Cisco IOS XE Web UI	=3.13.5s
Cisco IOS XE Web UI	=3.14.0s
Cisco IOS XE Web UI	=3.14.1s
Cisco IOS XE Web UI	=3.14.2s
Cisco IOS XE Web UI	=3.14.3s
Cisco IOS XE Web UI	=3.14.4s
Cisco IOS XE Web UI	=3.15.0s
Cisco IOS XE Web UI	=3.15.1s
Cisco IOS XE Web UI	=3.15.2s
Cisco IOS XE Web UI	=3.15.3s
Cisco IOS XE Web UI	=3.16.0s
Cisco IOS XE Web UI	=3.16.1as
Cisco IOS XE Web UI	=3.16.2as
Cisco IOS XE Web UI	=3.16.2s
Cisco IOS XE Web UI	=3.17.0s
Cisco IOS XE Web UI	=3.17.1s
Cisco IOS XE Web UI	=3.18.0s
Cisco IOS XE Web UI	=16.5.1c
Cisco IOS XE Web UI	=16.6.1

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-6664?
The CVE-2017-6664 vulnerability has a critical severity level due to potential unauthorized remote access.
How do I fix CVE-2017-6664?
To fix CVE-2017-6664, upgrade to a patched version of Cisco IOS XE software that addresses this vulnerability.
What systems are affected by CVE-2017-6664?
CVE-2017-6664 affects various versions of Cisco IOS XE, including 3.10.8as, 3.12.x, 3.13.x, and 3.14.x series among others.
Who can exploit CVE-2017-6664?
An unauthenticated, remote autonomic node can exploit CVE-2017-6664 to gain access to the Autonomic Networking infrastructure.
What impact does CVE-2017-6664 have on my network?
CVE-2017-6664 may allow unauthorized access to network configuration, potentially compromising the integrity and security of affected devices.

agent/severity
agent/weakness
agent/author
agent/type
agent/event
agent/description
agent/last-modified-date
agent/softwarecombine
agent/first-publish-date
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
agent/references
vendor/cisco
canonical/cisco ios xe web ui
version/cisco ios xe web ui/3.10.8as
version/cisco ios xe web ui/3.10.8s
version/cisco ios xe web ui/3.12.0s
version/cisco ios xe web ui/3.12.1s
version/cisco ios xe web ui/3.12.2s
version/cisco ios xe web ui/3.12.3s
version/cisco ios xe web ui/3.12.4s
version/cisco ios xe web ui/3.13.1s
version/cisco ios xe web ui/3.13.2s
version/cisco ios xe web ui/3.13.4s
version/cisco ios xe web ui/3.13.5s
version/cisco ios xe web ui/3.14.0s
version/cisco ios xe web ui/3.14.1s
version/cisco ios xe web ui/3.14.2s
version/cisco ios xe web ui/3.14.3s
version/cisco ios xe web ui/3.14.4s
version/cisco ios xe web ui/3.15.0s
version/cisco ios xe web ui/3.15.1s
version/cisco ios xe web ui/3.15.2s
version/cisco ios xe web ui/3.15.3s
version/cisco ios xe web ui/3.16.0s
version/cisco ios xe web ui/3.16.1as
version/cisco ios xe web ui/3.16.2as
version/cisco ios xe web ui/3.16.2s
version/cisco ios xe web ui/3.17.0s
version/cisco ios xe web ui/3.17.1s
version/cisco ios xe web ui/3.18.0s
version/cisco ios xe web ui/16.5.1c
version/cisco ios xe web ui/16.6.1