CVE-2017-3881 - Cisco IOS and IOS XE Remote Code Execution Vulnerability
Project:Cisco
Product:IOS and IOS XE
Date Added:2022-03-25Due Date:2022-04-15
Vulnerability Name
Cisco IOS and IOS XE Remote Code Execution Vulnerability
Description
A vulnerability in the Cisco Cluster Management Protocol (CMP) processing code in Cisco IOS and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause a reload of an affected device or remotely execute code with elevated privileges.
Known To Be Used in Ransomware Campaigns?
Unknown
Action
Apply updates per vendor instructions.
Additional Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-3881
Related News Articles
Hackers exploit Cisco SNMP flaw to deploy rootkit on switchesOctober 17, 2025
Hackers Deploy Linux Rootkits via Cisco SNMP Flaw in "Zero Disco' AttacksOctober 16, 2025