CVE-2017-12094

🗓️ 07 Nov 2017 16:00:00Reported by talosType

cve🔗 web.nvd.nist.gov👁 56 Views🌐 WEB

An exploitable vulnerability in WiFi Channel parsing of Circle with Disney firmware 2.0.1. Crafted SSID can execute arbitrary commands

Reporter	Title	Published	Views	Family All 9
CNVD	Circle with Disney Command Injection Vulnerability (CNVD-2017-33187)	2 Nov 201700:00	–	cnvd
Cvelist	CVE-2017-12094	7 Nov 201716:00	–	cvelist
EUVD	EUVD-2017-3680	7 Oct 202500:30	–	euvd
NVD	CVE-2017-12094	7 Nov 201716:29	–	nvd
OSV	CVE-2017-12094	7 Nov 201716:29	–	osv
Prion	Design/Logic Flaw	7 Nov 201716:29	–	prion
seebug.org	Circle with Disney Startup WiFi Channel Parsing Command Injection Vulnerability(CVE-2017-12094)	8 Nov 201700:00	–	seebug
Talos	Circle with Disney Startup WiFi Channel Parsing Command Injection Vulnerability	31 Oct 201700:00	–	talos
Talos Blog	Vulnerability Spotlight: The Circle of a Bug’s Life	31 Oct 201712:04	–	talosblog

NVD

Vulners

Node

meetcircle circle_with_disney_firmwareMatch2.0.1

AND

meetcircle circle_with_disneyMatch-

[
  {
    "product": "Circle",
    "vendor": "Circle Media",
    "versions": [
      {
        "status": "affected",
        "version": "firmware 2.0.1"
      }
    ]
  }
]

Source	Link
talosintelligence	www.talosintelligence.com/vulnerability_reports/TALOS-2017-0446

Parameter	Position	Path	Description	CWE
ssid	path	/mnt/shares/usr/bin/startcircle	Command injection via unsanitized channel derived from crafted SSID in startup script (CWE-77).	CWE-77
channel	path	/mnt/shares/usr/bin/startcircle	Command injection via unsanitized channel derived from crafted SSID in startup script (CWE-77).	CWE-77
ssid2	path	/tmp/hostapd.out	PoC uses crafted hostapd.conf to inject commands through SSID handling in the startup path (CWE-77).	CWE-77
channel	path	/tmp/hostapd.out	PoC uses crafted hostapd.conf to inject commands through SSID handling in the startup path (CWE-77).	CWE-77

17 Jun 2026 01:02Current

6.7Medium risk

Vulners AI Score6.7

CVSS 26.1

CVSS 36.5 - 7.4

EPSS0.00873

CWE-77