CVE-2017-3849

Name: CVE-2017-3849
Creator: NVD / NIST
Published: 2017-03-21T16:59:00.227+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 0.76%

Last modified Jun 17, 2026

CVE-2017-3849 is a vulnerability of currently unknown severity. A vulnerability in the Autonomic Networking Infrastructure (ANI) registrar feature of Cisco IOS Software (possibly 15.2 through 15.6) and Cisco IOS XE Software (possibly 3.7 through 3.18, and 16) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation on certain crafted packets. EPSS estimates a 0.76% chance of exploitation in the next 30 days.

Description

A vulnerability in the Autonomic Networking Infrastructure (ANI) registrar feature of Cisco IOS Software (possibly 15.2 through 15.6) and Cisco IOS XE Software (possibly 3.7 through 3.18, and 16) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation on certain crafted packets. An attacker could exploit this vulnerability by sending a crafted autonomic network channel discovery packet to a device that has all the following characteristics: (1) running a Cisco IOS Software or Cisco IOS XE Software release that supports the ANI feature; (2) configured as an autonomic registrar; (3) has a whitelist configured. An exploit could allow the attacker to cause the affected device to reload. Note: Autonomic networking should be configured with a whitelist. Do not remove the whitelist as a workaround. Cisco Bug IDs: CSCvc42717.

Metrics

EPSS Probability

0.76%

50.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Cisco	Ios	15.2\(3\)e
Cisco	Ios	15.2\(3\)e1
Cisco	Ios	15.2\(3\)e2
Cisco	Ios	15.2\(3\)e3
Cisco	Ios	15.2\(4\)e
Cisco	Ios	15.2\(4\)e1
Cisco	Ios	15.2\(4\)e2
Cisco	Ios	15.2\(4\)e3
Cisco	Ios	15.2\(5\)e
Cisco	Ios	15.2\(5\)e1
Cisco	Ios	15.2\(5a\)e
Cisco	Ios	15.2\(5b\)e
Cisco	Ios	15.3\(3\)s
Cisco	Ios	15.3\(3\)s1
Cisco	Ios	15.3\(3\)s2
Cisco	Ios	15.3\(3\)s3
Cisco	Ios	15.3\(3\)s4
Cisco	Ios	15.3\(3\)s5
Cisco	Ios	15.3\(3\)s6
Cisco	Ios	15.3\(3\)s8
Cisco	Ios	15.3\(3\)s9
Cisco	Ios	15.4\(1\)s
Cisco	Ios	15.4\(1\)s1
Cisco	Ios	15.4\(1\)s2
Cisco	Ios	15.4\(1\)s3
Cisco	Ios	15.4\(1\)s4
Cisco	Ios	15.4\(2\)s1
Cisco	Ios	15.4\(2\)s2
Cisco	Ios	15.4\(2\)s3
Cisco	Ios	15.4\(2\)s4
Cisco	Ios	15.4\(3\)s
Cisco	Ios	15.4\(3\)s1
Cisco	Ios	15.4\(3\)s2
Cisco	Ios	15.4\(3\)s3
Cisco	Ios	15.4\(3\)s4
Cisco	Ios	15.4\(3\)s5
Cisco	Ios	15.4\(3\)s6
Cisco	Ios	15.4\(3\)s6a
Cisco	Ios	15.5\(1\)s
Cisco	Ios	15.5\(1\)s1
Cisco	Ios	15.5\(1\)s2
Cisco	Ios	15.5\(1\)s3
Cisco	Ios	15.5\(1\)s4
Cisco	Ios	15.5\(2\)s
Cisco	Ios	15.5\(2\)s1
Cisco	Ios	15.5\(2\)s2
Cisco	Ios	15.5\(2\)s3
Cisco	Ios	15.5\(2\)s4
Cisco	Ios	15.5\(3\)s
Cisco	Ios	15.5\(3\)s0a

Showing 50 of 161 affected configurations. See NVD for the full list.

References

http://www.securityfocus.com/bid/96972Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1038064
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170320-aniVendor Advisory
http://www.securityfocus.com/bid/96972Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1038064
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170320-aniVendor Advisory

Timeline

Published: Mar 21, 2017
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-3849?

How severe is CVE-2017-3849?

Severity scoring for CVE-2017-3849 is pending analysis. The EPSS model estimates a 0.76% probability of exploitation in the next 30 days.

How do I fix CVE-2017-3849?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-3849?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST