Lucene search

CVE-2017-3210

🗓️ 24 Jul 2018 15:00:29Reported by certccType

Applications using Portrait Display SDK 2.30-2.34 allow arbitrary code execution due to insecure configurations. Affected applications include Fujitsu DisplayView Click 6.0, 6.01, Fujitsu DisplayView Click Suite 5, HP Display Assistant 2.1, HP My Display 2.0, and Philips Smart Control Premium 2.23, 2.25

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 7
0day.today	Portrait Display SDK Service Privilege Escalation Vulnerability	26 Apr 201700:00	–	zdt
CERT	Portrait Displays SDK applications are vulnerable to arbitrary code execution and privilege escalation	25 Apr 201700:00	–	cert
Tenable Nessus	Portrait Display SDK PdiService Insecure Privileges Local Privilege Escalation	28 Apr 201700:00	–	nessus
Cvelist	CVE-2017-3210 Applications developed using the Portrait Display SDK, versions 2.30 through 2.34, default to insecure configurations which allow arbitrary code execution	24 Jul 201815:00	–	cvelist
Packet Storm	Portrait Display SDK Service Privilege Escalation	26 Apr 201700:00	–	packetstorm
Prion	Design/Logic Flaw	24 Jul 201815:29	–	prion
NVD	CVE-2017-3210	24 Jul 201815:29	–	nvd

Nvd

Node

portrait portrait_display_sdkRange2.30–2.34

Node

fujitsu displayview_clickMatch6.0

fujitsu displayview_clickMatch6.01

fujitsu displayview_click_suiteMatch5.0

Node

hp display_assistantMatch2.1

hp my_displayMatch2.0

Node

philips smart_control_premiumMatch2.23

philips smart_control_premiumMatch2.25

[
  {
    "product": "SDK",
    "vendor": "Portrait Display",
    "versions": [
      {
        "lessThan": "2.34*",
        "status": "affected",
        "version": "2.30",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.cert.org/vuls/id/219739
securityfocus	www.securityfocus.com/bid/98006

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

24 Jul 2018 15:29Current

7.6High risk

Vulners AI Score7.6

CVSS27.2

CVSS37.8

EPSS0.00053