CVE-2017-3881 is a critical severity vulnerability with a CVSS score of 9.8. Exploits are available; patches have been released and should be applied urgently. This is classified as a zero-day vulnerability.
Please cite this page when referencing data from Strobes VI. Proper attribution helps support our vulnerability intelligence research.
Very high probability of exploitation in the next 30 days
EPSS predicts the probability of exploitation in the next 30 days based on real-world threat data, complementing CVSS severity scores with actual risk assessment.
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.
| Vendor | Product |
|---|---|
| Cisco | Catalyst 3550 48 Emi |
| Cisco | Catalyst 3750x 48u S |
| Cisco | Catalyst 2960x 24psq L |
| Cisco | Enhanced Layer 2 Etherswitch Service Module |
| Cisco | Catalyst 2960cg 8tc L |
| Cisco | Ie 3000 8tc Industrial Ethernet Switch |
| Cisco | Catalyst 4500 Supervisor Engine 6 E |
| Cisco | Catalyst 2960 Plus 24tc L |
| Cisco | Catalyst 2960xr 48fps I |
| Cisco | Catalyst 2960xr 24ts I |
And 313 more...