CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12945

Insufficient validation of user-supplied input for the Solstice Pod before 2.8.4 networking configuration enables authenticated attackers to execute arbitrary commands as root.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.254

EPSS Ranking 96.2%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 9.0

References

Products affected by CVE-2017-12945

Mersive » Solstice » Version: N/A

cpe:2.3:h:mersive:solstice:-
Mersive » Solstice Firmware » Version: N/A

cpe:2.3:o:mersive:solstice_firmware:-
Mersive » Solstice Firmware » Version: 2.6.0

cpe:2.3:o:mersive:solstice_firmware:2.6.0
Mersive » Solstice Firmware » Version: 2.6.2

cpe:2.3:o:mersive:solstice_firmware:2.6.2
Mersive » Solstice Firmware » Version: 2.7.0

cpe:2.3:o:mersive:solstice_firmware:2.7.0
Mersive » Solstice Firmware » Version: 2.7.2

cpe:2.3:o:mersive:solstice_firmware:2.7.2
Mersive » Solstice Firmware » Version: 2.7.3

cpe:2.3:o:mersive:solstice_firmware:2.7.3
Mersive » Solstice Firmware » Version: 2.8.0

cpe:2.3:o:mersive:solstice_firmware:2.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-12945

Products

Pricing

Contact Us