CVE-2017-6720: Buffer Overflow
First published: Thu Sep 21 2017(Updated: )
A vulnerability in the Secure Shell (SSH) subsystem of Cisco Small Business Managed Switches software could allow an authenticated, remote attacker to cause a reload of the affected switch, resulting in a denial of service (DoS) condition. The vulnerability is due to improper processing of SSH connections. An attacker could exploit this vulnerability by logging in to an affected switch via SSH and sending a malicious SSH message. This vulnerability affects the following Cisco products when SSH is enabled: Small Business 300 Series Managed Switches, Small Business 500 Series Stackable Managed Switches, 350 Series Managed Switches, 350X Series Stackable Managed Switches, 550X Series Stackable Managed Switches, ESW2 Series Advanced Switches. Cisco Bug IDs: CSCvb48377.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco SF302-08 | <1.4.8.06 | |
| Cisco SF302-08 | ||
| Cisco SF302-08 | <1.4.8.06 | |
| Cisco SF302-08 | ||
| Cisco SG300-10PP | <1.4.8.06 | |
| Cisco SG300-10 Firmware | ||
| Cisco SG300-10MPP Firmware | <1.4.8.06 | |
| Cisco SG300-10MPP Firmware | ||
| Cisco SF300-24P | <1.4.8.06 | |
| Cisco SF300-24PP Firmware | ||
| Cisco SF300-48PP Firmware | <1.4.8.06 | |
| Cisco SF300-48PP Firmware | ||
| Cisco SG300-28PP Firmware | <1.4.8.06 | |
| Cisco SG300-28PP Firmware | ||
| Cisco SF300-08 Firmware | <1.4.8.06 | |
| Cisco SF300-08 Firmware | ||
| Cisco SF300-48P Firmware | <1.4.8.06 | |
| Cisco SF300-48P Firmware | ||
| Cisco SG300-10MP Firmware | <1.4.8.06 | |
| Cisco SG300-10MP Firmware | ||
| Cisco SG300-10P Firmware | <1.4.8.06 | |
| Cisco SG300-10P Firmware | ||
| Cisco SG300 Series Firmware | <1.4.8.06 | |
| Cisco SG300-10 Firmware | ||
| Cisco SG300-28P Firmware | <1.4.8.06 | |
| Cisco SG300-28P | ||
| Cisco SF300-24P | <1.4.8.06 | |
| Cisco SF300-24 Firmware | ||
| Cisco SF302-08 | <1.4.8.06 | |
| Cisco SF302-08 | ||
| Cisco SG300-28P | <1.4.8.06 | |
| Cisco SG300-28 Firmware | ||
| Cisco SF300-48P Firmware | <1.4.8.06 | |
| Cisco SF300-48P | ||
| Cisco SG300 Series Firmware | <1.4.8.06 | |
| Cisco SG300-20 Firmware | ||
| Cisco SF302-08P | <1.4.8.06 | |
| Cisco SF302-08 | ||
| Cisco SG300 Series Firmware | <1.4.8.06 | |
| Cisco SG300-52P | ||
| Cisco SF300-24P Firmware | <1.4.8.06 | |
| Cisco SF300-24 Firmware | ||
| Cisco SF302-08 Firmware | <1.4.8.06 | |
| Cisco SF302-08 Firmware | ||
| Cisco SF300-24MP Firmware | <1.4.8.06 | |
| Cisco SF300-24MP Firmware | ||
| Cisco SG300 Series Firmware | <1.4.8.06 | |
| Cisco SG300-10SFP Firmware | ||
| Cisco SG300-28MP | <1.4.8.06 | |
| Cisco SG300-28MP | ||
| Cisco SG300-52P Firmware | <1.4.8.06 | |
| Cisco SG300-52P Firmware | ||
| Cisco SG300-52MP Firmware | <1.4.8.06 | |
| Cisco SG300-52MP Firmware | ||
| Cisco SG500-28PP Firmware | <1.4.8.06 | |
| Cisco SG500-28MPP Firmware | ||
| Cisco SG500-52MP | <1.4.8.06 | |
| Cisco SG500-52 | ||
| Cisco SG500XG-8F8T | <1.4.8.06 | |
| Cisco SG500XG-8F8T Firmware | ||
| Cisco SF500-24 | <1.4.8.06 | |
| Cisco SF500-24MP | ||
| Cisco SF500-24P | <1.4.8.06 | |
| Cisco SF500-24P Firmware | ||
| Cisco SF500-48P Firmware | <1.4.8.06 | |
| Cisco SF500-48 Firmware | ||
| Cisco 500 Series Switch Firmware | <1.4.8.06 | |
| Cisco SF500-48 Firmware | ||
| Cisco SG500-28 | <1.4.8.06 | |
| Cisco SG500-28PP Firmware | ||
| Cisco SG500-28P | <1.4.8.06 | |
| Cisco SG500-28P | ||
| Cisco SG500-52P | <1.4.8.06 | |
| Cisco SG500-52 Firmware | ||
| Cisco SG500-52P | <1.4.8.06 | |
| Cisco SG500-52P | ||
| Cisco SG500X-24 | <1.4.8.06 | |
| Cisco SG500X-24P | ||
| Cisco SG500X-24P | <1.4.8.06 | |
| Cisco SG500X-24P | ||
| Cisco SG500X-48 | <1.4.8.06 | |
| Cisco SG500X-48MP Firmware | ||
| Cisco SG500X-48P | <1.4.8.06 | |
| Cisco SG500X-48P | ||
| Cisco 250/350/350X/550X/ESW2 Series Switches Firmware | <1.4.8.06 | |
| Cisco Business 350 Series | ||
| Cisco ESW2-350G-52DC | <1.4.8.06 | |
| Cisco ESW2-350G-52DC Firmware | ||
| Cisco 250/350/350X/550X/ESW2 Series Switches Firmware | <1.4.8.06 | |
| Cisco ESW2-550X-48 Firmware | ||
| Cisco 250/350/350X/550X/ESW2 Series Switches Firmware | <1.4.8.06 | |
| Cisco ESW2-550X-48DC Firmware | ||
| Cisco SG350-10P | <2.3.0.130 | |
| Cisco SG350-10 Firmware | ||
| Cisco SG350-10P | <2.3.0.130 | |
| Cisco SG350-10P | ||
| Cisco SG350-10MP Firmware | <2.3.0.130 | |
| Cisco SG350-10MP Firmware | ||
| Cisco SG355-10P | <2.3.0.130 | |
| Cisco SG355-10P | ||
| Cisco SG350-28P Firmware | <2.3.0.130 | |
| Cisco SG350-28 Firmware | ||
| Cisco SG350-28P Firmware | <2.3.0.130 | |
| Cisco SG350-28P Firmware | ||
| Cisco SG350-28MP Firmware | <2.3.0.130 | |
| Cisco SG350-28MP Firmware | ||
| Cisco SF350-48 Firmware | <2.3.0.130 | |
| Cisco SF350-48 Firmware | ||
| Cisco SF350-48P Firmware | <2.3.0.130 | |
| Cisco SF350-48P Firmware | ||
| Cisco SF350-48MP Firmware | <2.3.0.130 | |
| Cisco SF350-48MP Firmware | ||
| Cisco SG350XG-2F10 | <2.3.0.130 | |
| Cisco SG350XG-2F10 Firmware | ||
| Cisco SG350XG-24F Firmware | <2.3.0.130 | |
| Cisco SG350XG-24F Firmware | ||
| Cisco SG350XG-24F Firmware | <2.3.0.130 | |
| Cisco SG350XG-24F Firmware | ||
| Cisco SG350XG-48T Firmware | <2.3.0.130 | |
| Cisco SG350XG-48T Firmware | ||
| Cisco SG350X-24P Firmware | <2.3.0.130 | |
| Cisco SG350X-24 Firmware | ||
| Cisco SG350X-24 Firmware | <2.3.0.130 | |
| Cisco SG350X-24 Firmware | ||
| Cisco SG350X-24MP | <2.3.0.130 | |
| Cisco SG350X-24MP Firmware | ||
| Cisco SG350X-48 Firmware | <2.3.0.130 | |
| Cisco SG350X-48 Firmware | ||
| Cisco SG350X-48P Firmware | <2.3.0.130 | |
| Cisco SG350X-48P Firmware | ||
| Cisco SG350X-48MP | <2.3.0.130 | |
| Cisco SG350X-48MP Firmware | ||
| Cisco SX550X Firmware | <2.3.0.130 | |
| Cisco SX550X-16FT Firmware | ||
| Cisco SX550X Firmware | <2.3.0.130 | |
| Cisco SX550X-24FT Firmware | ||
| Cisco SX550X-12F Firmware | <2.3.0.130 | |
| Cisco SX550X-12F Firmware | ||
| Cisco SX550X Firmware | <2.3.0.130 | |
| Cisco SX550X-24F Firmware | ||
| Cisco SX550X Firmware | <2.3.0.130 | |
| Cisco SX550X-24F Firmware | ||
| Cisco SX550X-52 | <2.3.0.130 | |
| Cisco SX550X-52 | ||
| Cisco SG550X-24P Firmware | <2.3.0.130 | |
| Cisco SG550X-24 Firmware | ||
| Cisco SG550X-24P Firmware | <2.3.0.130 | |
| Cisco SG550X-24P Firmware | ||
| Cisco SG550X-24MP Firmware | <2.3.0.130 | |
| Cisco SG550X-24MP Firmware | ||
| Cisco SG550X-24MPP Firmware | <2.3.0.130 | |
| Cisco SG550X-24MPP Firmware | ||
| Cisco SG550X-48MP Firmware | <2.3.0.130 | |
| Cisco SG550X-48 Firmware | ||
| Cisco SG550X-48P Firmware | <2.3.0.130 | |
| Cisco SG550X-48P Firmware | ||
| Cisco SG550X-48MP Firmware | <2.3.0.130 | |
| Cisco SG550X-48MP Firmware | ||
| Cisco SF550X-24P | <2.3.0.130 | |
| Cisco SF550X-24 Firmware | ||
| Cisco SF550X-24P | <2.3.0.130 | |
| Cisco SF550X-24P Firmware | ||
| Cisco SF550X-24MP Firmware | <2.3.0.130 | |
| Cisco SF550X-24MP Firmware | ||
| Cisco SF550X-48 | <2.3.0.130 | |
| Cisco SF550X-48 Firmware | ||
| Cisco SF550X-48P Firmware | <2.3.0.130 | |
| Cisco SG550X-48P | ||
| Cisco SG550X-48MP Firmware | <2.3.0.130 | |
| Cisco SF550X-48MP Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2017-6720?
CVE-2017-6720 has been classified with a severity level that could result in a denial of service (DoS) condition.
How do I fix CVE-2017-6720?
To fix CVE-2017-6720, upgrade the affected Cisco Small Business Managed Switches software to a version greater than 1.4.8.06.
Which Cisco products are affected by CVE-2017-6720?
CVE-2017-6720 affects various Cisco Small Business Managed Switch models with firmware versions up to 1.4.8.06.
What type of attack does CVE-2017-6720 facilitate?
CVE-2017-6720 enables an authenticated, remote attacker to cause a reload of the affected switch.
Is CVE-2017-6720 easy to exploit?
CVE-2017-6720 requires authentication, which may limit the ease of exploitation to authorized users.
- agent/references
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/author
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco sf302-08
- canonical/cisco sg300-10pp
- canonical/cisco sg300-10 firmware
- canonical/cisco sg300-10mpp firmware
- canonical/cisco sf300-24p
- canonical/cisco sf300-24pp firmware
- canonical/cisco sf300-48pp firmware
- canonical/cisco sg300-28pp firmware
- canonical/cisco sf300-08 firmware
- canonical/cisco sf300-48p firmware
- canonical/cisco sg300-10mp firmware
- canonical/cisco sg300-10p firmware
- canonical/cisco sg300 series firmware
- canonical/cisco sg300-28p firmware
- canonical/cisco sg300-28p
- canonical/cisco sf300-24 firmware
- canonical/cisco sg300-28 firmware
- canonical/cisco sf300-48p
- canonical/cisco sg300-20 firmware
- canonical/cisco sf302-08p
- canonical/cisco sg300-52p
- canonical/cisco sf300-24p firmware
- canonical/cisco sf302-08 firmware
- canonical/cisco sf300-24mp firmware
- canonical/cisco sg300-10sfp firmware
- canonical/cisco sg300-28mp
- canonical/cisco sg300-52p firmware
- canonical/cisco sg300-52mp firmware
- canonical/cisco sg500-28pp firmware
- canonical/cisco sg500-28mpp firmware
- canonical/cisco sg500-52mp
- canonical/cisco sg500-52
- canonical/cisco sg500xg-8f8t
- canonical/cisco sg500xg-8f8t firmware
- canonical/cisco sf500-24
- canonical/cisco sf500-24mp
- canonical/cisco sf500-24p
- canonical/cisco sf500-24p firmware
- canonical/cisco sf500-48p firmware
- canonical/cisco sf500-48 firmware
- canonical/cisco 500 series switch firmware
- canonical/cisco sg500-28
- canonical/cisco sg500-28p
- canonical/cisco sg500-52p
- canonical/cisco sg500-52 firmware
- canonical/cisco sg500x-24
- canonical/cisco sg500x-24p
- canonical/cisco sg500x-48
- canonical/cisco sg500x-48mp firmware
- canonical/cisco sg500x-48p
- canonical/cisco 250/350/350x/550x/esw2 series switches firmware
- canonical/cisco business 350 series
- canonical/cisco esw2-350g-52dc
- canonical/cisco esw2-350g-52dc firmware
- canonical/cisco esw2-550x-48 firmware
- canonical/cisco esw2-550x-48dc firmware
- canonical/cisco sg350-10p
- canonical/cisco sg350-10 firmware
- canonical/cisco sg350-10mp firmware
- canonical/cisco sg355-10p
- canonical/cisco sg350-28p firmware
- canonical/cisco sg350-28 firmware
- canonical/cisco sg350-28mp firmware
- canonical/cisco sf350-48 firmware
- canonical/cisco sf350-48p firmware
- canonical/cisco sf350-48mp firmware
- canonical/cisco sg350xg-2f10
- canonical/cisco sg350xg-2f10 firmware
- canonical/cisco sg350xg-24f firmware
- canonical/cisco sg350xg-48t firmware
- canonical/cisco sg350x-24p firmware
- canonical/cisco sg350x-24 firmware
- canonical/cisco sg350x-24mp
- canonical/cisco sg350x-24mp firmware
- canonical/cisco sg350x-48 firmware
- canonical/cisco sg350x-48p firmware
- canonical/cisco sg350x-48mp
- canonical/cisco sg350x-48mp firmware
- canonical/cisco sx550x firmware
- canonical/cisco sx550x-16ft firmware
- canonical/cisco sx550x-24ft firmware
- canonical/cisco sx550x-12f firmware
- canonical/cisco sx550x-24f firmware
- canonical/cisco sx550x-52
- canonical/cisco sg550x-24p firmware
- canonical/cisco sg550x-24 firmware
- canonical/cisco sg550x-24mp firmware
- canonical/cisco sg550x-24mpp firmware
- canonical/cisco sg550x-48mp firmware
- canonical/cisco sg550x-48 firmware
- canonical/cisco sg550x-48p firmware
- canonical/cisco sf550x-24p
- canonical/cisco sf550x-24 firmware
- canonical/cisco sf550x-24p firmware
- canonical/cisco sf550x-24mp firmware
- canonical/cisco sf550x-48
- canonical/cisco sf550x-48 firmware
- canonical/cisco sf550x-48p firmware
- canonical/cisco sg550x-48p
- canonical/cisco sf550x-48mp firmware