How severe is CVE-2017-7967?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5.5 out of 10.

What type of vulnerability is CVE-2017-7967?

This is classified as CWE-119, which is a common weakness in software security.

CVE-2017-7967

MEDIUM Year: 2017

CVSS v3 Score

5.5

Medium

CVSS v2 Score

2.1

Low

Weakness Type

CWE-119

View all →

Vulnerability Description

All versions of VAMPSET software produced by Schneider Electric, prior to V2.2.189, are susceptible to a memory corruption vulnerability when a corrupted vf2 file is used. This vulnerability causes the software to halt or not start when trying to open the corrupted file. This vulnerability occurs when fill settings are intentionally malformed and is opened in a standalone state, without connection to a protection relay. This attack is not considered to be remotely exploitable. This vulnerability has no effect on the operation of the protection relay to which VAMPSET is connected. As Windows operating system remains operational and VAMPSET responds, it is able to be shut down through its normal closing protocol.

CVE-2006-3635

MEDIUM

CVSS:5.5(Medium)

The ia64 subsystem in the Linux kernel before 2.6.26 allows local users to cause a denial of service (stack consumption and system crash) via a crafted application that leverages the mishandling of in...

CWE-1192006

CVE-2014-125002

MEDIUM

CVSS:5.5(Medium)

A vulnerability was found in FFmpeg 2.0. It has been classified as problematic. Affected is the function dnxhd_init_rc of the file libavcodec/dnxhdenc.c. The manipulation leads to memory corruption. I...

CWE-1192014

CVE-2014-125003

MEDIUM

CVSS:5.5(Medium)

A vulnerability was found in FFmpeg 2.0 and classified as problematic. This issue affects the function get_siz of the file libavcodec/jpeg2000dec.c. The manipulation leads to memory corruption. The at...

CWE-1192014

CVE-2014-125004

MEDIUM

CVSS:5.5(Medium)

A vulnerability has been found in FFmpeg 2.0 and classified as problematic. This vulnerability affects the function decode_hextile of the file libavcodec/vmnc.c. The manipulation leads to memory corru...

CWE-1192014

CVE-2014-125005

MEDIUM

CVSS:5.5(Medium)

A vulnerability, which was classified as problematic, was found in FFmpeg 2.0. This affects the function decode_vol_header of the file libavcodec/mpeg4videodec.c. The manipulation leads to memory corr...

CWE-1192014

CVE-2014-125006

MEDIUM

CVSS:5.5(Medium)

A vulnerability, which was classified as problematic, has been found in FFmpeg 2.0. Affected by this issue is the function output_frame of the file libavcodec/h264.c. The manipulation leads to memory ...

CWE-1192014

CVE-2017-7967

Vulnerability Description

Related Vulnerabilities

CVE-2006-3635

CVE-2014-125002

CVE-2014-125003

CVE-2014-125004

CVE-2014-125005

CVE-2014-125006