CVE-2017-12237 — Actively Exploited: IOS and IOS XE Software (Cisco)
A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service.
| CVE ID | CVE-2017-12237 |
|---|---|
| Vendor | Cisco |
| Product | IOS and IOS XE Software |
| Vulnerability name | Cisco IOS and IOS XE Software Internet Key Exchange Denial-of-Service Vulnerability |
| Date added | 2022-03-03 |
| Remediation due | 2022-03-24 |
| Known ransomware use | Unknown |
| Required action | Apply updates per vendor instructions. |
| Description | A vulnerability in the Internet Key Exchange Version 2 (IKEv2) module of Cisco IOS and Cisco IOS XE could allow an unauthenticated, remote attacker to cause high CPU utilization, traceback messages, or a reload of an affected device that leads to a denial of service. |
| Source | CISA Known Exploited Vulnerabilities |
🔍 Search all exploited vulnerabilities →
$1499/mo
Try ExploitWatch →