Lucene search

[email protected]NVD:CVE-2017-4997

HistoryJun 29, 2017 - 5:29 p.m.

CVE-2017-4997

2017-06-2917:29:00

CWE-20

[email protected]

web.nvd.nist.gov

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.011

Percentile

85.0%

JSON

EMC VASA Provider Virtual Appliance versions 8.3.x and prior has an unauthenticated remote code execution vulnerability that could potentially be exploited by malicious users to compromise the affected system.

Affected configurations

Nvd

Node

dellemc_vasa_provider_virtual_applianceRange≤8.3.0

VendorProductVersionCPE
dellemc_vasa_provider_virtual_appliance*cpe:2.3:a:dell:emc_vasa_provider_virtual_appliance:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
dell	emc_vasa_provider_virtual_appliance	*	cpe:2.3:a:dell:emc_vasa_provider_virtual_appliance::::::::

References

www.securityfocus.com/archive/1/540783/30/0/threaded

www.securityfocus.com/bid/99169

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

9.8

Confidence

High

EPSS

0.011

Percentile

85.0%

JSON

Related for NVD:CVE-2017-4997

cvelist1 zdt1 prion1 zdi1 checkpoint_advisories1 nessus2 cve1