Home Cisco CVE-2017-6738
CRITICAL: THIS VULNERABILITY IS ACTIVELY BEING EXPLOITED IN THE WILD (CISA KEV CATALOG)
Back to Cisco

CVE-2017-6738

Exploited

Cisco IOS and IOS XE Software - SNMP Subsystem

Cisco CVSS 8.8 Updated April 30, 2026

Executive Risk Summary

"The Simple Network Management Protocol (SNMP) subsystem of Cisco IOS and IOS XE Software contains multiple vulnerabilities that could allow an authenticated, remote attacker to remotely execute code on an affected system or cause an affected system to reload. An attacker could exploit these vulnerabilities by sending a crafted SNMP packet to an affected system via IPv4 or IPv6."

Anticipated Attack Path

  1. 1. Step 1: Attacker sends a crafted SNMP packet to the affected system
  2. 2. Step 2: Buffer overflow condition in the SNMP subsystem is triggered
  3. 3. Step 3: Attacker gains control of the affected system or causes it to reload

Am I Vulnerable?

  • Technical check 1: Verify if SNMP is enabled on the affected system
  • Technical check 2: Check if the affected system has the latest software patch
  • Technical check 3: Validate if the SNMP community string or user credentials are secure

Operational Audit Arsenal

Target Type Network Device
Target Asset snmpd
Standard Path Cisco IOS and IOS XE Software

Manual Verification Required

This is a non-Windows asset (Cisco). Use the target asset details and official path provided above to verify your current version against the official vendor advisories listed below.

Patch Impact Forecast

Reboot Required Likely

Potential network disruption during patch application

Internal Work Notes

Apply workaround or patch to mitigate SNMP vulnerabilities in Cisco IOS and IOS XE Software to prevent remote code execution or system reload

Technical Intelligence & Operational Utilities • Delivered Weekly

Intelligence Sources

Official Advisoryhttps://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
Official Advisoryhttp://www.securityfocus.com/bid/99345
Official Advisoryhttp://www.securitytracker.com/id/1038808
Official Advisoryhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170629-snmp
Official Advisoryhttps://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2017-6738

Related Cisco Threats

CVE-2026-20079 CVSS 10

Secure Firewall Management Center (FMC) Software
CVE-2026-20127 CVSS 10

Catalyst SD-WAN Controller - Peering Authentication
CVE-2025-20188 CVSS 10

Cisco IOS XE - Wireless LAN Controllers
Data compiled from NVD, MSRC, and CISA KEV Catalog. Intelligence synthesized via AI. Scripts provided for diagnostic purposes under MIT License.