Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-11120
HistorySep 28, 2017 - 1:29 a.m.

CVE-2017-11120

2017-09-2801:29:01
CWE-119
[email protected]
web.nvd.nist.gov
1

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.3%

JSON

On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56 and other chips, an attacker can craft a malformed RRM neighbor report frame to trigger an internal buffer overflow in the Wi-Fi firmware, aka B-V2017061204.

Affected configurations

NVD
Node
broadcombcm4355c0_firmwareMatch9.44.78.27.0.1.56
AND
broadcombcm4355c0Match-
Node
appleiphone_osRange<11.0
OR
appletvosRange<11.0

Related

threatpost 2
cvelist 1
seebug 1
prion 1
android 1
cve 1
lenovo 2
thn 1
googleprojectzero 1
nessus 1
apple 4
androidsecurity 1
threatpost
threatpost
Remote Wi-Fi Attack Backdoors iPhone 7
2017-09-27 08:00:25
Lenovo Warns Critical WiFi Vulnerability Impacts Dozens of ThinkPad Models
2018-02-09 12:59:46
cvelist
cvelist
CVE-2017-11120
2017-09-27 17:00:00
seebug
seebug
Broadcom: OOB write when handling 802.11k Neighbor Report Response(CVE-2017-11120)
2017-09-29 00:00:00
prion
prion
Buffer overflow
2017-09-28 01:29:00
android
android
CVE-2017-11120
2017-09-01 00:00:00
cve
cve
CVE-2017-11120
2017-09-28 01:29:01
lenovo
lenovo
Broadcom WiFi Buffer Overflow Vulnerability - Lenovo Support US
2018-06-27 00:28:00
Broadcom WiFi Buffer Overflow Vulnerability - US
2018-06-27 00:28:00
thn
thn
Google Researcher Publishes PoC Exploit for Apple iPhone Wi-Fi Chip Hack
2017-09-26 23:49:00
googleprojectzero
googleprojectzero
Over The Air - Vol. 2, Pt. 2: Exploiting The Wi-Fi Stack on Apple Devices
2017-10-03 00:00:00
nessus
nessus
Apple TV < 11 Multiple Vulnerabilities
2017-09-22 00:00:00
apple
apple
About the security content of tvOS 11 - Apple Support
2019-04-03 09:46:21
About the security content of tvOS 11
2017-09-19 00:00:00
About the security content of iOS 11
2017-09-19 00:00:00
androidsecurity
androidsecurity
Android Security Bulletinβ€”September 2017
2017-09-05 00:00:00

10 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.6 High

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

81.3%

JSON
Related for NVD:CVE-2017-11120
threatpost2cvelist1seebug1prion1android1cve1lenovo2thn1googleprojectzero1nessus1apple4androidsecurity1