admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-05-29 09:41:31 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/CVE-2017/CVE-2017-79xx/CVE-2017-7935.json

152 lines
4.6 KiB
JSON
Raw Normal View History

bootstrap
2023-04-24 12:24:31 +02:00
{
"id": "CVE-2017-7935",
"sourceIdentifier": "ics-cert@hq.dhs.gov",
"published": "2017-05-19T03:29:00.637",
"lastModified": "2019-10-09T23:30:01.030",
"vulnStatus": "Modified",
"descriptions": [
{
"lang": "en",
"value": "A Resource Exhaustion issue was discovered in Phoenix Contact GmbH mGuard firmware versions 8.3.0 to 8.4.2. An attacker may compromise the device's availability by performing multiple initial VPN requests."
},
{
"lang": "es",
"value": "Se ha descubierto un problema de agotamiento de recursos en Phoenix Contact GmbH mGuard desde la versi\u00f3n 8.3.0 hasta la 8.4.2. Un atacante podr\u00eda comprometer la disponibilidad del dispositivo mediante m\u00faltiples peticiones iniciales de VPN."
}
],
"metrics": {
"cvssMetricV30": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "3.0",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"attackVector": "NETWORK",
"attackComplexity": "LOW",
"privilegesRequired": "NONE",
"userInteraction": "NONE",
"scope": "UNCHANGED",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "HIGH",
"baseScore": 7.5,
"baseSeverity": "HIGH"
},
"exploitabilityScore": 3.9,
"impactScore": 3.6
}
],
"cvssMetricV2": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"cvssData": {
"version": "2.0",
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C",
"accessVector": "NETWORK",
"accessComplexity": "LOW",
"authentication": "NONE",
"confidentialityImpact": "NONE",
"integrityImpact": "NONE",
"availabilityImpact": "COMPLETE",
"baseScore": 7.8
},
"baseSeverity": "HIGH",
"exploitabilityScore": 10.0,
"impactScore": 6.9,
"acInsufInfo": false,
"obtainAllPrivilege": false,
"obtainUserPrivilege": false,
"obtainOtherPrivilege": false,
"userInteractionRequired": false
}
]
},
"weaknesses": [
{
"source": "nvd@nist.gov",
"type": "Primary",
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
},
{
"source": "ics-cert@hq.dhs.gov",
"type": "Secondary",
"description": [
{
"lang": "en",
"value": "CWE-400"
}
]
}
],
"configurations": [
{
"operator": "AND",
"nodes": [
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": true,
"criteria": "cpe:2.3:o:phoenix_contact_gmbh:mguard_firmware:8.3.0:*:*:*:*:*:*:*",
"matchCriteriaId": "116FA86C-7A05-4B2C-8148-6FE371E60D70"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:phoenix_contact_gmbh:mguard_firmware:8.3.1:*:*:*:*:*:*:*",
"matchCriteriaId": "236DEF3C-0F0F-467B-9EEB-276092938DAF"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:phoenix_contact_gmbh:mguard_firmware:8.3.2:*:*:*:*:*:*:*",
"matchCriteriaId": "A6A1E205-BB61-47BE-A903-0F122D2D732A"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:phoenix_contact_gmbh:mguard_firmware:8.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "BCB742B0-8E3E-4110-87A9-D40360743A42"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:phoenix_contact_gmbh:mguard_firmware:8.4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "582782AB-3CBC-4EB6-B271-4AA270F87CB1"
},
{
"vulnerable": true,
"criteria": "cpe:2.3:o:phoenix_contact_gmbh:mguard_firmware:8.4.2:*:*:*:*:*:*:*",
"matchCriteriaId": "3625B7F5-0170-4269-97A3-F3ABF147F803"
}
]
},
{
"operator": "OR",
"negate": false,
"cpeMatch": [
{
"vulnerable": false,
"criteria": "cpe:2.3:h:phoenix_contact_gmbh:mguard:-:*:*:*:*:*:*:*",
"matchCriteriaId": "418AA18B-BB7E-4C77-BF5C-F1CB320B643B"
}
]
}
]
}
],
"references": [
{
"url": "https://ics-cert.us-cert.gov/advisories/ICSA-17-131-01",
"source": "ics-cert@hq.dhs.gov",
"tags": [
"Third Party Advisory",
"US Government Resource"
]
}
]
}
Reference in New Issue Copy Permalink