How severe is CVE-2017-9138?

This vulnerability has a severity rating of HIGH with a CVSS score of 8 out of 10.

What type of vulnerability is CVE-2017-9138?

This is classified as CWE-119, which is a common weakness in software security.

CVE-2017-9138

HIGH Year: 2017

CVSS v3 Score

8.0

High

CVSS v2 Score

7.7

High

Weakness Type

CWE-119

View all →

Vulnerability Description

There is a debug-interface vulnerability on some Tenda routers (FH1202/F1202/F1200: versions before 1.2.0.20). After connecting locally to a router in a wired or wireless manner, one can bypass intended access restrictions by sending shell commands directly and reading their results, or by entering shell commands that change this router's username and password.

CVE-2016-8377

HIGH

CVSS:8.0(High)

An issue was discovered in Fatek Automation PLC WinProladder Version 3.11 Build 14701. A stack-based buffer overflow vulnerability exists when the software application connects to a malicious server, ...

CWE-1192016

CVE-2017-2714

HIGH

CVSS:8.0(High)

The GaussDB in FusionSphere OpenStack V100R005C10SPC705 and earlier versions has a buffer overflow vulnerability. An authenticated attacker on the LAN can exploit this vulnerability to execute arbitra...

CWE-1192017

CVE-2017-7050

HIGH

CVSS:8.0(High)

An issue was discovered in certain Apple products. macOS before 10.12.6 is affected. The issue involves the "Bluetooth" component. It allows attackers to execute arbitrary code in a privileged context...

CWE-1192017

CVE-2017-7051

HIGH

CVSS:8.0(High)

CWE-1192017

CVE-2017-7054

HIGH

CVSS:8.0(High)

CWE-1192017

CVE-2017-8335

HIGH

CVSS:8.0(High)

An issue was discovered on Securifi Almond, Almond+, and Almond 2015 devices with firmware AL-R096. The device provides a user with the capability of setting name for wireless network. These values ar...

CWE-1192017

CVE-2017-9138

Vulnerability Description

Related Vulnerabilities

CVE-2016-8377

CVE-2017-2714

CVE-2017-7050

CVE-2017-7051

CVE-2017-7054

CVE-2017-8335