Home Cisco CVE-2017-6736
CRITICAL: THIS VULNERABILITY IS ACTIVELY BEING EXPLOITED IN THE WILD (CISA KEV CATALOG)
Back to Cisco

CVE-2017-6736

Exploited

Cisco IOS and IOS XE Software - SNMP Subsystem

Cisco CVSS 8.8 Updated April 30, 2026

Executive Risk Summary

"The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6."

Anticipated Attack Path

  1. 1. Step 1: Attacker sends a crafted SNMP packet to the affected system
  2. 2. Step 2: Buffer overflow condition in the SNMP subsystem is triggered
  3. 3. Step 3: Attacker gains control of the affected system or causes it to reload

Am I Vulnerable?

  • Technical check 1: Verify if SNMP is enabled on the device
  • Technical check 2: Check if the affected MIBs or OIDs are explicitly excluded
  • Technical check 3: Validate the SNMP community string or user credentials

Operational Audit Arsenal

Target Type Network Device
Target Asset snmpd
Standard Path Cisco IOS and IOS XE Software

Manual Verification Required

This is a non-Windows asset (Cisco). Use the target asset details and official path provided above to verify your current version against the official vendor advisories listed below.

Patch Impact Forecast

Reboot Required Likely

Potential disruption to network services

Internal Work Notes

CVE-2017-6736: Multiple vulnerabilities in Cisco IOS and IOS XE Software SNMP subsystem, allowing remote code execution or system reload. Apply workaround or fixed software as recommended by Cisco.

Technical Intelligence & Operational Utilities • Delivered Weekly

Intelligence Sources

Official Advisoryhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
Official Advisoryhttp://www.securityfocus.com/bid/99345
Official Advisoryhttp://www.securitytracker.com/id/1038808
Official Advisoryhttps://github.com/artkond/cisco-snmp-rce
Official Advisoryhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
Official Advisoryhttps://www.exploit-db.com/exploits/43450/
Official Advisoryhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6736

Related Cisco Threats

CVE-2026-20079 CVSS 10

Secure Firewall Management Center (FMC) Software
CVE-2026-20127 CVSS 10

Catalyst SD-WAN Controller - Peering Authentication
CVE-2025-20188 CVSS 10

Cisco IOS XE - Wireless LAN Controllers
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.