Lucene search

[email protected]CVE-2017-17901

HistoryDec 29, 2017 - 10:29 p.m.

CVE-2017-17901

2017-12-2922:29:00

CWE-400

[email protected]

web.nvd.nist.gov

zyxel p-660hw v3

vulnerability

cpu consumption

flood

ip packets

denial of service

cve-2017-17901

nvd

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.3%

JSON

ZyXEL P-660HW v3 devices allow remote attackers to cause a denial of service (CPU consumption) via a flood of IP packets with a TTL of 1.

Affected configurations

NVD

Node

zyxelp-660hw_firmwareMatch-

AND

zyxelp-660hwMatchv3

CPENameOperatorVersion
zyxel:p-660hw_firmwarezyxel p-660hw firmwareeq-

CPE	Name	Operator	Version
zyxel:p-660hw_firmware	zyxel p-660hw firmware	eq	-

References

packetstormsecurity.com/files/145548/ZyXEL-P-660HW-TTL-Expiry-Denial-Of-Service.html

www.zyxel.com/support/announcement_denial_of_service.shtml

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

7.4 High

AI Score

Confidence

High

7.8 High

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

0.001 Low

EPSS

Percentile

49.3%

JSON

Related for CVE-2017-17901

cvelist1 packetstorm1 prion1 nvd1