CVE-2017-7184

🗓️ 19 Mar 2017 18:00:00Reported by mitreType

cve🔗 web.nvd.nist.gov👁 257 Views🌐 WEB

The xfrm_replay_verify_len function in Linux kernel allows local users to obtain root privileges or cause denial of service

Reporter	Title	Published	Views	Family All 222
GithubExploit	Exploit for CVE-2017-7184	5 Mar 202612:40	–	githubexploit
GithubExploit	Exploit for CVE-2017-7184	2 Feb 202611:58	–	githubexploit
IBM Security Bulletins	Security Bulletin: IBM QRadar Network Security is affected by Linux kernel vulnerabilities	25 Jul 201814:37	–	ibm
IBM Security Bulletins	Security Bulletin: A vulnerability in the Linux Kernel affects PowerKVM	18 Jun 201801:35	–	ibm
IBM Security Bulletins	Security Bulletin: Vulnerabilities in the Linux kernel affect PowerKVM	6 Jul 201823:49	–	ibm
ALT Linux	Security fix for the ALT Linux 7 package kernel-image-un-def version 1:4.1.49-alt0.M70P.1	25 Jan 201800:00	–	altlinux
Amazon	Important: kernel	29 Mar 201700:00	–	amazon
Tenable Nessus	Amazon Linux AMI : kernel (ALAS-2017-811)	30 Mar 201700:00	–	nessus
Tenable Nessus	CentOS 7 : kernel (CESA-2017:2930)	24 Oct 201700:00	–	nessus
Tenable Nessus	Debian DLA-922-1 : linux security update	1 May 201700:00	–	nessus

NVD

Node

AND

Node

linux linux_kernelRange3.3–3.10.106

linux linux_kernelRange3.11–3.12.73

linux linux_kernelRange3.13–3.16.44

linux linux_kernelRange3.17–3.18.49

linux linux_kernelRange3.19–4.1.49

linux linux_kernelRange4.2–4.4.59

linux linux_kernelRange4.5–4.9.20

linux linux_kernelRange4.10–4.10.8

Source	Link
openwall	www.openwall.com/lists/oss-security/2017/03/29/2
securitytracker	www.securitytracker.com/id/1038166
git	www.git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/
eweek	www.eweek.com/security/ubuntu-linux-falls-on-day-1-of-pwn2own-hacking-competition
git	www.git.kernel.org/cgit/linux/kernel/git/torvalds/linux.git/commit/
github	www.github.com/torvalds/linux/commit/f843ee6dd019bcece3e74e76ad9df0155655d0df
github	www.github.com/torvalds/linux/commit/677e806da4d916052585301785d847c3b3e6186a
access	www.access.redhat.com/errata/RHSA-2017:2930
access	www.access.redhat.com/errata/RHSA-2017:2931
securityfocus	www.securityfocus.com/bid/97018

Parameter	Position	Path	Description	CWE
replay_window	path	git.kernel.org/linus/677e806da4d916052585301785d847c3b3b3e6186a	Out-of-bounds reads/writes due to unvalidated user-specified replay_window in xfrm_replay_verify_len used by XFRM; potential local privilege escalation with CAP_NET_ADMIN.	CWE-125, CWE-787
xfrm_replay_verify_len	path	git.kernel.org/linus/677e806da4d916052585301785d847c3b3b3e6186a	Out-of-bounds reads/writes due to unvalidated user-specified replay_window in xfrm_replay_verify_len used by XFRM; potential local privilege escalation with CAP_NET_ADMIN.	CWE-125, CWE-787
xfrm_new_ae	path	git.kernel.org/linus/677e806da4d916052585301785d847c3b3b3e6186a	Out-of-bounds reads/writes due to unvalidated user-specified replay_window in xfrm_replay_verify_len used by XFRM; potential local privilege escalation with CAP_NET_ADMIN.	CWE-125, CWE-787
replay_window	path	git.kernel.org/linus/f843ee6dd019bcece3e74e76ad9df0155655d0df	Fixes for out-of-bounds access in xfrm_replay_verify_len related to XFRM_MSG_NEWAE update and user namespaces.	CWE-125, CWE-787
xfrm_replay_verify_len	path	git.kernel.org/linus/f843ee6dd019bcece3e74e76ad9df0155655d0df	Fixes for out-of-bounds access in xfrm_replay_verify_len related to XFRM_MSG_NEWAE update and user namespaces.	CWE-125, CWE-787
XFRM_MSG_NEWAE	path	git.kernel.org/linus/f843ee6dd019bcece3e74e76ad9df0155655d0df	Fixes for out-of-bounds access in xfrm_replay_verify_len related to XFRM_MSG_NEWAE update and user namespaces.	CWE-125, CWE-787

17 Jun 2026 01:23Current

7.3High risk

Vulners AI Score7.3

CVSS 27.2

CVSS 3.17.8

EPSS0.01759