Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cveVulDBCVE-2017-20082
HistoryJun 22, 2022 - 6:15 a.m.

CVE-2017-20082

2022-06-2206:15:07
CWE-912
VulDB
web.nvd.nist.gov
29
7
cve-2017-20082
vulnerability
jung smart visu server
backdoor access
security upgrade

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

17.8%

JSON

A vulnerability, which was classified as problematic, has been found in JUNG Smart Visu Server 1.0.804/1.0.830/1.0.832. This issue affects some unknown processing. The manipulation leads to backdoor. The attack needs to be approached locally. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.900 is able to address this issue. It is recommended to upgrade the affected component.

Affected configurations

Nvd
Vulners
Node
jung-groupsmart_visu_serverMatch-
AND
jung-groupsmart_visu_server_firmwareMatch1.0.804
OR
jung-groupsmart_visu_server_firmwareMatch1.0.830
OR
jung-groupsmart_visu_server_firmwareMatch1.0.832
VendorProductVersionCPE
jung-groupsmart_visu_server-cpe:2.3:h:jung-group:smart_visu_server:-:*:*:*:*:*:*:*
jung-groupsmart_visu_server_firmware1.0.804cpe:2.3:o:jung-group:smart_visu_server_firmware:1.0.804:*:*:*:*:*:*:*
jung-groupsmart_visu_server_firmware1.0.830cpe:2.3:o:jung-group:smart_visu_server_firmware:1.0.830:*:*:*:*:*:*:*
jung-groupsmart_visu_server_firmware1.0.832cpe:2.3:o:jung-group:smart_visu_server_firmware:1.0.832:*:*:*:*:*:*:*

CNA Affected

[
  {
    "product": "Smart Visu Server",
    "vendor": "JUNG",
    "versions": [
      {
        "status": "affected",
        "version": "1.0.804"
      },
      {
        "status": "affected",
        "version": "1.0.830"
      },
      {
        "status": "affected",
        "version": "1.0.832"
      }
    ]
  }
]

Social References

More

Related

prion 1
cvelist 1
nvd 1
prion
prion
Design/Logic Flaw
2022-06-22 06:15:00
cvelist
cvelist
CVE-2017-20082 JUNG Smart Visu Server backdoor
2022-06-22 06:10:15
nvd
nvd
CVE-2017-20082
2022-06-22 06:15:07

CVSS2

4.9

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

NONE

Availability Impact

NONE

AV:L/AC:L/Au:N/C:C/I:N/A:N

CVSS3

5.5

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

NONE

Availability Impact

NONE

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

17.8%

JSON
Related for CVE-2017-20082
prion1cvelist1nvd1