CVE-2017-7307

2017-04-0416:00:00

mitre

www.cve.org

6.5 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

33.5%

JSON

Riverbed RiOS before 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically proximate attackers to obtain root privileges and access decrypted data by replacing the /opt/tms/bin/cli file.

References

seclists.org/fulldisclosure/2017/Feb/25

supportkb.riverbed.com/support/index?page=content&id=S30065