CVE-2017-12240: Cisco IOS and IOS XE Software DHCP Remote Code Execution
Cisco IOS and IOS XE Software DHCP Remote Code Execution Vulnerability. The Dynamic Host Configuration Protocol (DHCP) relay subsystem of Cisco IOS and Cisco IOS XE Software contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system.
- CISA KEV-listed (remediation due 2022-03-24)
- EPSS 10.7% (93.5% percentile)