Lucene search

JpcertCVE-2017-2153

HistoryApr 28, 2017 - 4:59 p.m.

CVE-2017-2153

2017-04-2816:59:02

CWE-20

jpcert

web.nvd.nist.gov

cve-2017-2153

seil

x86

fuji

denial of service

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

54.8%

JSON

SEIL/x86 Fuji 1.70 to 5.62, SEIL/BPV4 5.00 to 5.62, SEIL/X1 1.30 to 5.62, SEIL/X2 1.30 to 5.62, SEIL/B1 1.00 to 5.62 allows remote attackers to cause a denial of service via specially crafted IPv4 UDP packets.

Affected configurations

Nvd

Vulners

Node

seilx86_fuji_firmwareMatch-

AND

seilx86_fujiMatch-

Node

seilbpv_4_firmwareMatch-

AND

seilbpv_4Match-

Node

seilx1_firmwareMatch-

AND

seilx1Match-

Node

seilx2_firmwareMatch-

AND

seilx2Match-

Node

seilb1_firmwareMatch-

AND

seilb1Match-

VendorProductVersionCPE
seilx86_fuji_firmware-cpe:2.3:o:seil:x86_fuji_firmware:-:*:*:*:*:*:*:*
seilx86_fuji-cpe:2.3:h:seil:x86_fuji:-:*:*:*:*:*:*:*
seilbpv_4_firmware-cpe:2.3:o:seil:bpv_4_firmware:-:*:*:*:*:*:*:*
seilbpv_4-cpe:2.3:h:seil:bpv_4:-:*:*:*:*:*:*:*
seilx1_firmware-cpe:2.3:o:seil:x1_firmware:-:*:*:*:*:*:*:*
seilx1-cpe:2.3:h:seil:x1:-:*:*:*:*:*:*:*
seilx2_firmware-cpe:2.3:o:seil:x2_firmware:-:*:*:*:*:*:*:*
seilx2-cpe:2.3:h:seil:x2:-:*:*:*:*:*:*:*
seilb1_firmware-cpe:2.3:o:seil:b1_firmware:-:*:*:*:*:*:*:*
seilb1-cpe:2.3:h:seil:b1:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
seil	x86_fuji_firmware	-	cpe:2.3:o:seil:x86_fuji_firmware:-:::::::*
seil	x86_fuji	-	cpe:2.3:h:seil:x86_fuji:-:::::::*
seil	bpv_4_firmware	-	cpe:2.3:o:seil:bpv_4_firmware:-:::::::*
seil	bpv_4	-	cpe:2.3:h:seil:bpv_4:-:::::::*
seil	x1_firmware	-	cpe:2.3:o:seil:x1_firmware:-:::::::*
seil	x1	-	cpe:2.3:h:seil:x1:-:::::::*
seil	x2_firmware	-	cpe:2.3:o:seil:x2_firmware:-:::::::*
seil	x2	-	cpe:2.3:h:seil:x2:-:::::::*
seil	b1_firmware	-	cpe:2.3:o:seil:b1_firmware:-:::::::*
seil	b1	-	cpe:2.3:h:seil:b1:-:::::::*

CNA Affected

[
  {
    "product": "SEIL/x86 Fuji",
    "vendor": "Internet Initiative Japan Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "1.70 to 5.62"
      }
    ]
  },
  {
    "product": "SEIL/BPV4",
    "vendor": "Internet Initiative Japan Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "5.00 to 5.62"
      }
    ]
  },
  {
    "product": "SEIL/X1",
    "vendor": "Internet Initiative Japan Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "1.30 to 5.62"
      }
    ]
  },
  {
    "product": "SEIL/X2",
    "vendor": "Internet Initiative Japan Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "1.30 to 5.62"
      }
    ]
  },
  {
    "product": "SEIL/B1",
    "vendor": "Internet Initiative Japan Inc.",
    "versions": [
      {
        "status": "affected",
        "version": "1.00 to 5.62"
      }
    ]
  }
]

References

jvn.jp/en/jp/JVN86171513/index.html

www.seil.jp/support/security/a01783.html

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

CVSS3

7.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS

0.002

Percentile

54.8%

JSON

Related for CVE-2017-2153