{"uuid": "ec63dbff-aafe-4391-9c7d-d7f3963e9a6f", "vulnerability": {"vulnId": "CVE-2017-12319", "altId": []}, "gcve": {"origin_uuid": "405284c2-e461-4670-8979-7fd2c9755a60", "object_uuid": "ec63dbff-aafe-4391-9c7d-d7f3963e9a6f"}, "status": {"exploited": true, "status_reason": "confirmed", "status_updated_at": "2022-03-03T00:00:00+00:00"}, "characteristics": {}, "timestamps": {"asserted_at": "2022-03-03T00:00:00Z", "recorded_at": "2026-02-02T13:24:01Z", "first_seen_at": "2022-03-03T00:00:00Z"}, "scope": {"notes": "KEV entry: Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial-of-Service Vulnerability | Affected: Cisco / IOS XE Software | Description: A vulnerability in the Border Gateway Protocol (BGP) over an Ethernet Virtual Private Network (EVPN) for Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause the device to reload, resulting in a denial of service (DoS) condition, or potentially corrupt the BGP routing table, which could result in network instability. | Required action: Apply updates per vendor instructions. | Due date: 2022-03-24 | Known ransomware campaign use (KEV): Unknown | Notes (KEV): https://nvd.nist.gov/vuln/detail/CVE-2017-12319"}, "evidence": [{"type": "vendor_report", "source": "cisa-kev", "signal": "successful_exploitation", "confidence": 0.8, "details": {"cwes": ["CWE-20"], "feed": "CISA Known Exploited Vulnerabilities Catalog", "product": "IOS XE Software", "due_date": "2022-03-24", "date_added": "2022-03-03", "vendorProject": "Cisco", "vulnerabilityName": "Cisco IOS XE Software Ethernet Virtual Private Network Border Gateway Protocol Denial-of-Service Vulnerability", "knownRansomwareCampaignUse": "Unknown"}}], "references": [{"id": "CVE-2017-12319", "url": "https://www.cisa.gov/known-exploited-vulnerabilities-catalog?search_api_fulltext=CVE-2017-12319"}]}