cvelistv5 - CVE-2017-2161

CVE-2017-2161 (GCVE-0-2017-2161)

Vulnerability from cvelistv5

Published

2017-05-22 16:00

Modified

2024-08-05 13:48

Severity ?

CWE

Fails to restrict access

Summary

FlashAirTM SDHC Memory Card (SD-WE Series <W-03>) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series <W-02>) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors.

References

URL

ghsa-92jq-v773-q7rp

Vulnerability from github

Published

2022-05-13 01:44

Modified

2022-05-13 01:44

Severity ?

3.5 (Low) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2017-2161"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-425"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-05-22T16:29:00Z",
    "severity": "LOW"
  },
  "details": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors.",
  "id": "GHSA-92jq-v773-q7rp",
  "modified": "2022-05-13T01:44:43Z",
  "published": "2022-05-13T01:44:43Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2161"
    },
    {
      "type": "WEB",
      "url": "https://jvn.jp/en/jp/JVN46372675/index.html"
    },
    {
      "type": "WEB",
      "url": "http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html"
    },
    {
      "type": "WEB",
      "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
      "type": "CVSS_V3"
    }
  ]
}

var-201705-3458

Vulnerability from variot

FlashAirTM SDHC Memory Card (SD-WE Series ) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series ) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors. FlashAir by Toshiba Corporation is an SDHC memory card which provides wireless LAN access functions. FlashAir PhotoShare function enables to share the selected data with other users as it switches the original wireless LAN connection set by FlashAir default to the wireless LAN connection for PhotoShare. FlashAir fails to restrict access permissions (CWE-425) in PhotoShare. Takayoshi Isayama of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.A user who access PhotoShare may obtain image data that are set not to be shared with other users. Because of the vulnerability stated in JVN#81820501, when enabling PhotoShare with web browsers, an attacker with access to the wireless LAN may obtain these image data. A security vulnerability exists in FlashAirSDHCMemoryCard 2.00.04 and earlier and versions prior to 3.00.02

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201705-3458",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "flashair",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "toshiba",
        "version": "3.00.02"
      },
      {
        "model": "flashair",
        "scope": "lte",
        "trust": 1.0,
        "vendor": "toshiba",
        "version": "2.00.04"
      },
      {
        "model": "flashair",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "toshiba",
        "version": "sdhc memory card (sd-wd/wc series \u003cw-02\u003e) v2.00.04"
      },
      {
        "model": "flashair",
        "scope": "lte",
        "trust": 0.8,
        "vendor": "toshiba",
        "version": "sdhc memory card (sd-we series \u003cw-03\u003e) v3.00.02"
      },
      {
        "model": "flashair sdhc memory card",
        "scope": "lte",
        "trust": 0.6,
        "vendor": "toshiba",
        "version": "\u003c=v2.00.04"
      },
      {
        "model": "flashair sdhc memory card",
        "scope": "lte",
        "trust": 0.6,
        "vendor": "toshiba",
        "version": "\u003c=v3.00.02"
      },
      {
        "model": "flashair",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "toshiba",
        "version": "3.00.02"
      },
      {
        "model": "flashair",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "toshiba",
        "version": "2.00.04"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/a:toshiba:flashair",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      }
    ]
  },
  "cve": "CVE-2017-2161",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "SINGLE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 2.7,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 5.1,
            "id": "CVE-2017-2161",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "LOW",
            "trust": 1.1,
            "vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Adjacent Network",
            "authentication": "Single",
            "author": "IPA",
            "availabilityImpact": "None",
            "baseScore": 2.7,
            "confidentialityImpact": "Partial",
            "exploitabilityScore": null,
            "id": "JVNDB-2017-000090",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Low",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "SINGLE",
            "author": "CNVD",
            "availabilityImpact": "NONE",
            "baseScore": 2.7,
            "confidentialityImpact": "PARTIAL",
            "exploitabilityScore": 5.1,
            "id": "CNVD-2017-07205",
            "impactScore": 2.9,
            "integrityImpact": "NONE",
            "severity": "LOW",
            "trust": 0.6,
            "vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT",
            "author": "nvd@nist.gov",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "exploitabilityScore": 2.1,
            "id": "CVE-2017-2161",
            "impactScore": 1.4,
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Adjacent Network",
            "author": "IPA",
            "availabilityImpact": "None",
            "baseScore": 3.5,
            "baseSeverity": "Low",
            "confidentialityImpact": "Low",
            "exploitabilityScore": null,
            "id": "JVNDB-2017-000090",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "Low",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2017-2161",
            "trust": 1.0,
            "value": "LOW"
          },
          {
            "author": "IPA",
            "id": "JVNDB-2017-000090",
            "trust": 0.8,
            "value": "Low"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2017-07205",
            "trust": 0.6,
            "value": "LOW"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201705-771",
            "trust": 0.6,
            "value": "LOW"
          },
          {
            "author": "VULMON",
            "id": "CVE-2017-2161",
            "trust": 0.1,
            "value": "LOW"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "VULMON",
        "id": "CVE-2017-2161"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors. FlashAir by Toshiba Corporation is an SDHC memory card which provides wireless LAN access functions. FlashAir PhotoShare function enables to share the selected data with other users as it switches the original wireless LAN connection set by FlashAir default to the wireless LAN connection for PhotoShare. FlashAir fails to restrict access permissions (CWE-425) in PhotoShare. Takayoshi Isayama of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.A user who access PhotoShare may obtain image data that are set not to be shared with other users. Because of the vulnerability stated in JVN#81820501, when enabling PhotoShare with web browsers, an attacker with access to the wireless LAN may obtain these image data. A security vulnerability exists in FlashAirSDHCMemoryCard 2.00.04 and earlier and versions prior to 3.00.02",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "VULMON",
        "id": "CVE-2017-2161"
      }
    ],
    "trust": 2.25
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090",
        "trust": 3.1
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161",
        "trust": 3.1
      },
      {
        "db": "JVN",
        "id": "JVN46372675",
        "trust": 2.5
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771",
        "trust": 0.6
      },
      {
        "db": "VULMON",
        "id": "CVE-2017-2161",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "VULMON",
        "id": "CVE-2017-2161"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "id": "VAR-201705-3458",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      }
    ],
    "trust": 1.475
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      }
    ]
  },
  "last_update_date": "2024-11-23T22:34:38.578000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "How to Use the Photoshare function",
        "trust": 0.8,
        "url": "http://www.toshiba-personalstorage.net/support/manual/flashair/wewdwc/photoshare.htm"
      },
      {
        "title": "SDHC Memory Card with embedded wireless LAN functionality FlashAir(SD-WD/WC series\u003cW-02\u003e)",
        "trust": 0.8,
        "url": "http://www.toshiba-personalstorage.net/endproduct/flashair/index_j.htm"
      },
      {
        "title": "SDHC Memory Card with embedded wireless LAN functionality FlashAir(SD-WE series\u003cW-03\u003e)",
        "trust": 0.8,
        "url": "http://www.toshiba-personalstorage.net/product/flashair/index_j.htm"
      },
      {
        "title": "Photoshare of FlashAir may have a security vulnerability to access restriction",
        "trust": 0.8,
        "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
      },
      {
        "title": "FlashAirSDHCMemoryCard has an unexplained patch",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchInfo/show/94095"
      },
      {
        "title": "Toshiba FlashAirTM SDHC Memory Card Security vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=70340"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-425",
        "trust": 1.0
      },
      {
        "problemtype": "CWE-284",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.5,
        "url": "https://jvn.jp/en/jp/jvn46372675/index.html"
      },
      {
        "trust": 1.7,
        "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
      },
      {
        "trust": 1.7,
        "url": "http://jvndb.jvn.jp/en/contents/2017/jvndb-2017-000090.html"
      },
      {
        "trust": 0.8,
        "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-2161"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-2161"
      },
      {
        "trust": 0.6,
        "url": "http://jvndb.jvn.jp/jvndb/jvndb-2017-000090"
      },
      {
        "trust": 0.1,
        "url": "https://cwe.mitre.org/data/definitions/425.html"
      },
      {
        "trust": 0.1,
        "url": "https://nvd.nist.gov"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "VULMON",
        "id": "CVE-2017-2161"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "db": "VULMON",
        "id": "CVE-2017-2161"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-05-23T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "date": "2017-05-22T00:00:00",
        "db": "VULMON",
        "id": "CVE-2017-2161"
      },
      {
        "date": "2017-05-16T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "date": "2017-05-17T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "date": "2017-05-22T16:29:00.560000",
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-05-23T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-07205"
      },
      {
        "date": "2019-10-03T00:00:00",
        "db": "VULMON",
        "id": "CVE-2017-2161"
      },
      {
        "date": "2017-12-21T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      },
      {
        "date": "2019-10-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      },
      {
        "date": "2024-11-21T03:23:00.577000",
        "db": "NVD",
        "id": "CVE-2017-2161"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote or local",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "FlashAir fails to restrict access permissions in PhotoShare",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-000090"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "lack of information",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201705-771"
      }
    ],
    "trust": 0.6
  }
}

fkie_cve-2017-2161

Vulnerability from fkie_nvd

Published

2017-05-22 16:29

Modified

2025-04-20 01:37

Severity ?

3.5 (Low) - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Summary

References

URL	Tags
vultures@jpcert.or.jp	http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html	Third Party Advisory, VDB Entry
vultures@jpcert.or.jp	http://www.toshiba-personalstorage.net/news/20170516a.htm	Vendor Advisory
vultures@jpcert.or.jp	https://jvn.jp/en/jp/JVN46372675/index.html	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.toshiba-personalstorage.net/news/20170516a.htm	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	https://jvn.jp/en/jp/JVN46372675/index.html	Third Party Advisory, VDB Entry

Impacted products

	Vendor	Product	Version
	toshiba	flashair	*
	toshiba	flashair	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:toshiba:flashair:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "81FE3A57-D37B-4A63-B644-9296BEB763B1",
              "versionEndIncluding": "2.00.04",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:toshiba:flashair:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "81955C91-8DC4-4626-A84E-556E6E5E8B3C",
              "versionEndIncluding": "3.00.02",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors."
    },
    {
      "lang": "es",
      "value": "Tarjeta de memoria SDHC de FlashAirTM (Serie SD-WE (W-03)) versi\u00f3n 3.00.02 y anteriores y tarjeta de memoria SDHC de FlashAirTM (Serie SD-WD/WC (W-02)) versi\u00f3n 2.00.04 y anteriores, permite a los atacantes autenticados omitir las restricciones de acceso para obtener datos de imagen no autorizados por medio de vectores no especificados."
    }
  ],
  "id": "CVE-2017-2161",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "LOW",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "ADJACENT_NETWORK",
          "authentication": "SINGLE",
          "availabilityImpact": "NONE",
          "baseScore": 2.7,
          "confidentialityImpact": "PARTIAL",
          "integrityImpact": "NONE",
          "vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
          "version": "2.0"
        },
        "exploitabilityScore": 5.1,
        "impactScore": 2.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "NONE",
          "baseScore": 3.5,
          "baseSeverity": "LOW",
          "confidentialityImpact": "LOW",
          "integrityImpact": "NONE",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
          "version": "3.0"
        },
        "exploitabilityScore": 2.1,
        "impactScore": 1.4,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-05-22T16:29:00.560",
  "references": [
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
    },
    {
      "source": "vultures@jpcert.or.jp",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://jvn.jp/en/jp/JVN46372675/index.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "https://jvn.jp/en/jp/JVN46372675/index.html"
    }
  ],
  "sourceIdentifier": "vultures@jpcert.or.jp",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-425"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

cnvd-2017-07205

Vulnerability from cnvd

Title

FlashAir SDHC Memory Card存在未明漏洞

Description

FlashAir SDHC Memory Card是日本东芝（Toshiba）公司的一款SD存储卡。 FlashAir SDHC Memory Card 2.00.04及之前的版本和3.00.02之前的版本中存在安全漏洞，该漏洞源于程序未能限制访问权限。攻击者可利用该漏洞获取图像数据。

Severity

低

Patch Name

FlashAir SDHC Memory Card存在未明漏洞的补丁

Patch Description

FlashAir SDHC Memory Card是日本东芝（Toshiba）公司的一款SD存储卡。 FlashAir SDHC Memory Card 2.00.04及之前的版本和3.00.02之前的版本中存在安全漏洞，该漏洞源于程序未能限制访问权限。攻击者可利用该漏洞获取图像数据。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接： http://www.toshiba-personalstorage.net/news/20170516a.htm

Reference

http://jvndb.jvn.jp/jvndb/JVNDB-2017-000090

Impacted products

Name
['Toshiba FlashAir SDHC Memory Card <=V2.00.04', 'Toshiba FlashAir SDHC Memory Card <=V3.00.02']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2017-2161"
    }
  },
  "description": "FlashAir SDHC Memory Card\u662f\u65e5\u672c\u4e1c\u829d\uff08Toshiba\uff09\u516c\u53f8\u7684\u4e00\u6b3eSD\u5b58\u50a8\u5361\u3002\r\n\r\nFlashAir SDHC Memory Card 2.00.04\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c3.00.02\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u9650\u5236\u8bbf\u95ee\u6743\u9650\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u56fe\u50cf\u6570\u636e\u3002",
  "discovererName": "Takayoshi Isayama of Mitsui Bussan Secure Directions, Inc.",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttp://www.toshiba-personalstorage.net/news/20170516a.htm",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-07205",
  "openTime": "2017-05-23",
  "patchDescription": "FlashAir SDHC Memory Card\u662f\u65e5\u672c\u4e1c\u829d\uff08Toshiba\uff09\u516c\u53f8\u7684\u4e00\u6b3eSD\u5b58\u50a8\u5361\u3002\r\n\r\nFlashAir SDHC Memory Card 2.00.04\u53ca\u4e4b\u524d\u7684\u7248\u672c\u548c3.00.02\u4e4b\u524d\u7684\u7248\u672c\u4e2d\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u672a\u80fd\u9650\u5236\u8bbf\u95ee\u6743\u9650\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u83b7\u53d6\u56fe\u50cf\u6570\u636e\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "FlashAir SDHC Memory Card\u5b58\u5728\u672a\u660e\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Toshiba FlashAir SDHC Memory Card \u003c=V2.00.04",
      "Toshiba FlashAir SDHC Memory Card \u003c=V3.00.02"
    ]
  },
  "referenceLink": "http://jvndb.jvn.jp/jvndb/JVNDB-2017-000090",
  "serverity": "\u4f4e",
  "submitTime": "2017-05-18",
  "title": "FlashAir SDHC Memory Card\u5b58\u5728\u672a\u660e\u6f0f\u6d1e"
}

CVE-2017-2161

Vulnerability from jvndb

Published

2017-05-16 15:34

Modified

2017-12-21 19:13

Severity ?

3.5 (Low) - cvssV3_0 - CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N

Summary

FlashAir fails to restrict access permissions in PhotoShare

Details

FlashAir by Toshiba Corporation is an SDHC memory card which provides wireless LAN access functions. FlashAir PhotoShare function enables to share the selected data with other users as it switches the original wireless LAN connection set by FlashAir default to the wireless LAN connection for PhotoShare. FlashAir fails to restrict access permissions (CWE-425) in PhotoShare. Takayoshi Isayama of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.

References

Type

URL

	JVN	http://jvn.jp/en/jp/JVN46372675/index.html
	CVE	https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2161
	NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-2161
	Improper Access Control(CWE-284)	https://cwe.mitre.org/data/definitions/284.html

Impacted products

Vendor

Product

TOSHIBA

FlashAir

Show details on JVN DB website

JSON

To clipboard

{
  "@rdf:about": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html",
  "dc:date": "2017-12-21T19:13+09:00",
  "dcterms:issued": "2017-05-16T15:34+09:00",
  "dcterms:modified": "2017-12-21T19:13+09:00",
  "description": "FlashAir by Toshiba Corporation is an SDHC memory card which provides wireless LAN access functions. FlashAir PhotoShare function enables to share the selected data with other users as it switches the original wireless LAN connection set by FlashAir default to the wireless LAN connection for PhotoShare.\r\n\r\nFlashAir fails to restrict access permissions (CWE-425) in PhotoShare.\r\n\r\nTakayoshi Isayama of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA.\r\nJPCERT/CC coordinated with the developer under Information Security Early Warning Partnership.",
  "link": "https://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html",
  "sec:cpe": {
    "#text": "cpe:/a:toshiba:flashair",
    "@product": "FlashAir",
    "@vendor": "TOSHIBA",
    "@version": "2.2"
  },
  "sec:cvss": [
    {
      "@score": "2.7",
      "@severity": "Low",
      "@type": "Base",
      "@vector": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
      "@version": "2.0"
    },
    {
      "@score": "3.5",
      "@severity": "Low",
      "@type": "Base",
      "@vector": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
      "@version": "3.0"
    }
  ],
  "sec:identifier": "JVNDB-2017-000090",
  "sec:references": [
    {
      "#text": "http://jvn.jp/en/jp/JVN46372675/index.html",
      "@id": "JVN#46372675",
      "@source": "JVN"
    },
    {
      "#text": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-2161",
      "@id": "CVE-2017-2161",
      "@source": "CVE"
    },
    {
      "#text": "https://nvd.nist.gov/vuln/detail/CVE-2017-2161",
      "@id": "CVE-2017-2161",
      "@source": "NVD"
    },
    {
      "#text": "https://cwe.mitre.org/data/definitions/284.html",
      "@id": "CWE-284",
      "@title": "Improper Access Control(CWE-284)"
    }
  ],
  "title": "FlashAir fails to restrict access permissions in PhotoShare"
}

gsd-2017-2161

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2017-2161

Aliases

CVE-2017-2161

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2017-2161",
    "description": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors.",
    "id": "GSD-2017-2161"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2017-2161"
      ],
      "details": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors.",
      "id": "GSD-2017-2161",
      "modified": "2023-12-13T01:21:05.283017Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "vultures@jpcert.or.jp",
        "ID": "CVE-2017-2161",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "V3.00.02 and earlier"
                        }
                      ]
                    }
                  },
                  {
                    "product_name": "FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e)",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "V2.00.04 and earlier"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Toshiba Corporation"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Fails to restrict access"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "JVNDB-2017-000090",
            "refsource": "JVNDB",
            "url": "http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html"
          },
          {
            "name": "JVN#46372675",
            "refsource": "JVN",
            "url": "https://jvn.jp/en/jp/JVN46372675/index.html"
          },
          {
            "name": "http://www.toshiba-personalstorage.net/news/20170516a.htm",
            "refsource": "CONFIRM",
            "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:toshiba:flashair:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "2.00.04",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:toshiba:flashair:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndIncluding": "3.00.02",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "vultures@jpcert.or.jp",
          "ID": "CVE-2017-2161"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "FlashAirTM SDHC Memory Card (SD-WE Series \u003cW-03\u003e) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series \u003cW-02\u003e) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-425"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "JVN#46372675",
              "refsource": "JVN",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "https://jvn.jp/en/jp/JVN46372675/index.html"
            },
            {
              "name": "http://www.toshiba-personalstorage.net/news/20170516a.htm",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://www.toshiba-personalstorage.net/news/20170516a.htm"
            },
            {
              "name": "JVNDB-2017-000090",
              "refsource": "JVNDB",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "SINGLE",
            "availabilityImpact": "NONE",
            "baseScore": 2.7,
            "confidentialityImpact": "PARTIAL",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:L/Au:S/C:P/I:N/A:N",
            "version": "2.0"
          },
          "exploitabilityScore": 5.1,
          "impactScore": 2.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "LOW",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "NONE",
            "baseScore": 3.5,
            "baseSeverity": "LOW",
            "confidentialityImpact": "LOW",
            "integrityImpact": "NONE",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:L/I:N/A:N",
            "version": "3.0"
          },
          "exploitabilityScore": 2.1,
          "impactScore": 1.4
        }
      },
      "lastModifiedDate": "2019-10-03T00:03Z",
      "publishedDate": "2017-05-22T16:29Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2017-2161 (GCVE-0-2017-2161)

Vulnerability from cvelistv5

ghsa-92jq-v773-q7rp

Vulnerability from github

var-201705-3458

Vulnerability from variot

fkie_cve-2017-2161

Vulnerability from fkie_nvd

cnvd-2017-07205

Vulnerability from cnvd

CVE-2017-2161

Vulnerability from jvndb

gsd-2017-2161

Vulnerability from gsd

Tags

Sightings

Nomenclature