CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-14702

ERS Data System 1.8.1.0 allows remote attackers to execute arbitrary code, related to "com.branaghgroup.ecers.update.UpdateRequest" object deserialization.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.124

EPSS Ranking 93.6%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

https://github.com/wshepherd0010/advisories/blob/master/CVE-2017-14702.md
https://www.exploit-db.com/exploits/42952/
https://github.com/wshepherd0010/advisories/blob/master/CVE-2017-14702.md
https://www.exploit-db.com/exploits/42952/

Products affected by CVE-2017-14702

Branaghgroup » Ers Data System » Version: 1.8.1.0

cpe:2.3:a:branaghgroup:ers_data_system:1.8.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-14702

Products

Pricing

Contact Us