PatchSiren cyber security CVE debrief

CVE-2017-3836 Cisco CVE debrief

CVE-2017-3836 is a Cisco Unified Communications Manager web-framework issue that can expose sensitive data to a remote attacker. The NVD record classifies the issue as medium severity and maps it to CWE-200 (Information Exposure), with Cisco referencing advisory cisco-sa-20170215-cucm3 and fixed releases available for affected builds.

Vendor: Cisco
Product: CVE-2017-3836
CVSS: MEDIUM 4.3
CISA KEV: Not listed in stored evidence
Original CVE published: 2017-02-22
Original CVE updated: 2026-05-13
Advisory published: 2017-02-22
Advisory updated: 2026-05-13

Who should care

Cisco Unified Communications Manager administrators, telecom and collaboration platform owners, and security teams responsible for internet-facing or broadly reachable UC management services should prioritize review. Systems running the known affected release 11.5(1.11007.2) deserve the closest attention.

Technical summary

The supplied record describes a vulnerability in Cisco Unified Communications Manager's web framework that could allow sensitive information to be viewed by an attacker. The CVE description states the exposure can be triggered remotely and without authentication, while the NVD CVSS vector recorded for the issue is CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. NVD also maps the weakness to CWE-200 and lists 11.5(1.11007.2) as a vulnerable CPE entry; Cisco’s advisory reference lists multiple fixed 12.0 releases.

Defensive priority

Medium. This is a confidentiality issue rather than an integrity or availability flaw, but exposed data in a communications platform can still be operationally sensitive. Prioritize if the affected CUCM instance is reachable by untrusted networks or contains high-value user, call, or administrative information.

Recommended defensive actions

Identify Cisco Unified Communications Manager deployments and verify whether any instance is running the known affected release 11.5(1.11007.2).
Upgrade to a Cisco fixed release listed in the CVE description: 12.0(0.98000.162), 12.0(0.98000.178), 12.0(0.98000.383), 12.0(0.98000.488), 12.0(0.98000.536), 12.0(0.98000.6), or 12.0(0.98500.6).
Review Cisco advisory cisco-sa-20170215-cucm3 for vendor remediation guidance and deployment specifics.
Limit network exposure to CUCM management interfaces and restrict access to trusted administrative paths where possible.
Monitor for unusual access patterns to CUCM web resources and review logs for evidence of unauthorized information access.

Evidence notes

This debrief is based only on the supplied NVD record and its referenced Cisco advisory URL. The CVE description says a remote attacker could view sensitive data in the Cisco Unified Communications Manager web framework, and the NVD metadata maps the issue to CWE-200 with CVSS 3.0 vector AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N. The supplied description names 11.5(1.11007.2) as the known affected release and lists multiple fixed 12.0 releases. No KEV entry is present in the supplied data.

Official resources

CVE-2017-3836 CVE record
CVE.org
CVE-2017-3836 NVD detail
NVD
Source item URL
nvd_modified
Source reference
[email protected]
Source reference
[email protected]
Mitigation or vendor reference
[email protected] - Vendor Advisory

CVE published 2017-02-22. The supplied record was modified on 2026-05-13. No Known Exploited Vulnerability (KEV) entry is present in the provided timeline.