Multiple vulnerabilities in the implementation of the Common Industrial Protocol (CIP) feature in Cisco IOS 12.4 through 15.6 could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerabilities are due to the improper parsing of crafted CIP packets destined to an affected device. An attacker could exploit these vulnerabilities by sending crafted CIP packets to be processed by an affected device. A successful exploit could allow the attacker to cause the affected device to reload, resulting in a DoS condition. Cisco Bug IDs: CSCuz95334.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact None

Availability Impact High

User Interaction None

No CVSS v3.0

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact None

Integrity Impact None

Availability Impact Complete

This CVE is in the KEV database since March 3, 2022.

The EPSS score is 0.06545.

Exploitation active

Automatable yes

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
n/a Cisco IOS affected
Version Status Constraints
Cisco IOS affected

Configuration 1 [-]

AND
cpe:2.3:o:cisco:ios:*:*:*:*:*:*:*:*
OR cpe:2.3:h:cisco:1000_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4g\/6g_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4g_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4gltegb_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4gltena_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-4p_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-6g_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-8p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-8p_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100-lte_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1100_terminal_services_gateways:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1101-4p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1101-4p_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1101_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1109-2p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1109-4p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1111-4pwe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1111-8pwb:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1111x-8p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1113-8plteeawe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1113-8pmwe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1113-8pwe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1116-4plteeawe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1116-4pwe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1117-4plteeawe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1117-4pmlteeawe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1117-4pmwe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1117-4pwe:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1120:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1120_connected_grid_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1120_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1131_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1160_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1801_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1802_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1803_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1811_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1812_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1841_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1861_integrated_service_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1905_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1906c_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1921_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1941_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:1941w_integrated_services_router:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_ie3200_rugged_switch:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_ie3300_rugged_switch:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_ie3400_heavy_duty_switch:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_ie3400_rugged_switch:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:catalyst_ie9300:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:esr-6300-con-k9:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:esr-6300-ncp-k9:-:*:*:*:*:*:*:*

No data.

No data.

Project Subscriptions

Vendors Products
Cisco Subscribe
1000 Integrated Services Router Subscribe
1100-4g\/6g Integrated Services Router Subscribe
1100-4g Integrated Services Router Subscribe
1100-4gltegb Integrated Services Router Subscribe
1100-4gltena Integrated Services Router Subscribe
1100-4p Subscribe
1100-4p Integrated Services Router Subscribe
1100-6g Integrated Services Router Subscribe
1100-8p Subscribe
1100-8p Integrated Services Router Subscribe
1100-lte Integrated Services Router Subscribe
1100 Integrated Services Router Subscribe
1100 Terminal Services Gateways Subscribe
1101-4p Subscribe
1101-4p Integrated Services Router Subscribe
1101 Integrated Services Router Subscribe
1109-2p Subscribe
1109-4p Subscribe
1111-4pwe Subscribe
1111-8pwb Subscribe
1111x-8p Subscribe
1113-8plteeawe Subscribe
1113-8pmwe Subscribe
1113-8pwe Subscribe
1116-4plteeawe Subscribe
1116-4pwe Subscribe
1117-4plteeawe Subscribe
1117-4pmlteeawe Subscribe
1117-4pmwe Subscribe
1117-4pwe Subscribe
1120 Subscribe
1120 Connected Grid Router Subscribe
1120 Integrated Services Router Subscribe
1131 Integrated Services Router Subscribe
1160 Integrated Services Router Subscribe
1801 Integrated Service Router Subscribe
1802 Integrated Service Router Subscribe
1803 Integrated Service Router Subscribe
1811 Integrated Service Router Subscribe
1812 Integrated Service Router Subscribe
1841 Integrated Service Router Subscribe
1861 Integrated Service Router Subscribe
1905 Integrated Services Router Subscribe
1906c Integrated Services Router Subscribe
1921 Integrated Services Router Subscribe
1941 Integrated Services Router Subscribe
1941w Integrated Services Router Subscribe
Catalyst Ie3200 Rugged Switch Subscribe
Catalyst Ie3300 Rugged Switch Subscribe
Catalyst Ie3400 Heavy Duty Switch Subscribe
Catalyst Ie3400 Rugged Switch Subscribe
Catalyst Ie9300 Subscribe
Esr-6300-con-k9 Subscribe
Esr-6300-ncp-k9 Subscribe
Ios Subscribe
Advisories

No advisories yet.

Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
http://www.securityfocus.com/bid/101038 cve-icon cve-icon
http://www.securitytracker.com/id/1039459 cve-icon cve-icon
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170927-cip cve-icon cve-icon
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-12233 cve-icon cve-icon
History

Wed, 22 Oct 2025 00:15:00 +0000

Type Values Removed Values Added
References

Tue, 21 Oct 2025 20:30:00 +0000

Type Values Removed Values Added
References

Tue, 21 Oct 2025 19:30:00 +0000

Type Values Removed Values Added
References

Fri, 15 Nov 2024 18:15:00 +0000

Type Values Removed Values Added
Metrics kev

{'dateAdded': '2022-03-03'}

ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'active', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published:

Updated: 2026-01-12T21:41:58.300Z

Reserved: 2017-08-03T00:00:00.000Z

Link: CVE-2017-12233

cve-icon Vulnrichment

Updated: 2024-08-05T18:28:16.648Z

cve-icon NVD

Status : Deferred

Published: 2017-09-29T01:34:48.827

Modified: 2026-01-12T22:16:00.087

Link: CVE-2017-12233

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

No data.

Weaknesses