Lucene search
HistoryMay 03, 2023 - 8:15 p.m.
CVE-2017-11197
cyberark
viewfinity
privilege escalation
cve-2017-11197
nvd
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.8%
In CyberArk Viewfinity 5.5.10.95 and 6.x before 6.1.1.220, a low privilege user can escalate to an administrative user via a bug within the “add printer” option.
Affected configurations
Node
cyberarkviewfinityRange6.0–6.1.1.220
ORcyberarkviewfinityMatch5.5.10.95
| CPE | Name | Operator | Version |
|---|---|---|---|
| cyberark:viewfinity | cyberark viewfinity | lt | 6.1.1.220 |
| cyberark:viewfinity | cyberark viewfinity | eq | 5.5.10.95 |
Related
prion
prion
Design/Logic Flaw
2023-05-03 20:15:00
cvelist
cvelist
CVE-2017-11197
2023-05-03 00:00:00
exploitpack
exploitpack
CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation
2017-07-13 00:00:00
nvd
nvd
CVE-2017-11197
2023-05-03 20:15:09
exploitdb
exploitdb
CyberArk Viewfinity 5.5.10.95 - Local Privilege Escalation
2017-07-13 00:00:00
7.8 High
CVSS3
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
7.7 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
20.8%
Related for CVE-2017-11197