Lucene search
MitreVULNRICHMENT:CVE-2017-17514HistoryDec 14, 2017 - 4:00 p.m.
CVE-2017-17514
2017-12-1416:00:00
mitre
github.com
6
AI Score
6.8
Confidence
Low
EPSS
0.002
Percentile
52.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
boxes.c in nip2 8.4.0 does not validate strings before launching the program specified by the BROWSER environment variable, which might allow remote attackers to conduct argument-injection attacks via a crafted URL. NOTE: a software maintainer indicates that this product does not use the BROWSER environment variable
ADP Affected
[
{
"cpes": [
"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*"
],
"vendor": "debian",
"product": "debian_linux",
"versions": [
{
"status": "affected",
"version": "8.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*"
],
"vendor": "debian",
"product": "debian_linux",
"versions": [
{
"status": "affected",
"version": "9.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*"
],
"vendor": "debian",
"product": "debian_linux",
"versions": [
{
"status": "affected",
"version": "10.0"
}
],
"defaultStatus": "unknown"
},
{
"cpes": [
"cpe:2.3:a:nip2_project:nip2:8.4.0:*:*:*:*:*:*:*"
],
"vendor": "nip2_project",
"product": "nip2",
"versions": [
{
"status": "affected",
"version": "8.4.0"
}
],
"defaultStatus": "unknown"
}
]Related
prion
prion
Design/Logic Flaw
2017-12-14 16:29:00
ubuntucve
ubuntucve
CVE-2017-17514
2017-12-14 00:00:00
debiancve
debiancve
CVE-2017-17514
2017-12-14 16:29:00
cve
cve
CVE-2017-17514
2017-12-14 16:29:00
cvelist
cvelist
CVE-2017-17514
2017-12-14 16:00:00
nvd
nvd
CVE-2017-17514
2017-12-14 16:29:00
AI Score
6.8
Confidence
Low
EPSS
0.002
Percentile
52.7%
SSVC
Exploitation
none
Automatable
no
Technical Impact
total
Related for VULNRICHMENT:CVE-2017-17514