← ExploitWatch
HomeExploited Vulnerabilities

CVE-2017-12240 — Actively Exploited: IOS and IOS XE Software (Cisco)

The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.

CVE IDCVE-2017-12240
VendorCisco
ProductIOS and IOS XE Software
Vulnerability nameCisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability
Date added2022-03-03
Remediation due2022-03-24
Known ransomware useUnknown
Required actionApply updates per vendor instructions.
DescriptionThe Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →