CVEDB API - Fast Vulnerability Dashboard

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-15084

The web UI in Rapid7 Metasploit before 4.14.1-20170828 allows logout CSRF, aka R7-2017-22.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 33.0%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

Products affected by CVE-2017-15084

Rapid7 » Metasploit » Version: 4.11.7

cpe:2.3:a:rapid7:metasploit:4.11.7
Rapid7 » Metasploit » Version: 4.12.40

cpe:2.3:a:rapid7:metasploit:4.12.40
Rapid7 » Metasploit » Version: 4.13.0

cpe:2.3:a:rapid7:metasploit:4.13.0
Rapid7 » Metasploit » Version: 4.13.1

cpe:2.3:a:rapid7:metasploit:4.13.1
Rapid7 » Metasploit » Version: 4.13.19

cpe:2.3:a:rapid7:metasploit:4.13.19
Rapid7 » Metasploit » Version: 4.14.0

cpe:2.3:a:rapid7:metasploit:4.14.0
Rapid7 » Metasploit » Version: 4.14.1

cpe:2.3:a:rapid7:metasploit:4.14.1

Products

Pricing

Contact Us

support@shodan.io

Shodan ® - All rights reserved