CVE-2017-3864

Name: CVE-2017-3864
Creator: NVD / NIST
Published: 2017-03-22T19:59:00.4+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

HIGHCVSS 8.6/10EPSS 2.67%

Last modified Jun 17, 2026

CVE-2017-3864 is a high-severity vulnerability rated 8.6/10 on the CVSS scale. A vulnerability in the DHCP client implementation of Cisco IOS (12.2, 12.4, and 15.0 through 15.6) and Cisco IOS XE (3.3 through 3.7) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing of a crafted DHCP packet. EPSS estimates a 2.67% chance of exploitation in the next 30 days.

Description

A vulnerability in the DHCP client implementation of Cisco IOS (12.2, 12.4, and 15.0 through 15.6) and Cisco IOS XE (3.3 through 3.7) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition. The vulnerability occurs during the parsing of a crafted DHCP packet. An attacker could exploit this vulnerability by sending crafted DHCP packets to an affected device that is configured as a DHCP client. A successful exploit could allow the attacker to cause a reload of an affected device, resulting in a DoS condition. This vulnerability affects Cisco devices that are running a vulnerable release of Cisco IOS or IOS XE Software and using a specific DHCP client configuration. Cisco Bug IDs: CSCuu43892.

Metrics

CVSS 3.1

8.6/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

EPSS Probability

2.67%

83.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-399

Affected Software

Vendor	Product	Versions
Cisco	Ios	>= 15.0, <= 15.6
Cisco	Ios	12.2
Cisco	Ios	12.4
Cisco	Ios Xe	>= 3.3, <= 3.7

References

http://www.securityfocus.com/bid/97012Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1038103Third Party Advisory, VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170322-dhcpcVendor Advisory
http://www.securityfocus.com/bid/97012Third Party Advisory, VDB Entry
http://www.securitytracker.com/id/1038103Third Party Advisory, VDB Entry
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170322-dhcpcVendor Advisory

Timeline

Published: Mar 22, 2017
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-3864?

How severe is CVE-2017-3864?

CVE-2017-3864 has a CVSS score of 8.6/10 (HIGH severity). The EPSS model estimates a 2.67% probability of exploitation in the next 30 days.

How do I fix CVE-2017-3864?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-3864?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST