CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-17508

In HDF5 1.10.1, there is a divide-by-zero vulnerability in the function H5T_set_loc in the H5T.c file in libhdf5.a. For example, h5dump would crash when someone opens a crafted hdf5 file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 63.3%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 4.3

References

https://github.com/xiaoqx/pocs/tree/master/hdf5/readme.md
https://github.com/xiaoqx/pocs/tree/master/hdf5/readme.md

Products affected by CVE-2017-17508

Hdfgroup » Hdf5 » Version: 1.10.1

cpe:2.3:a:hdfgroup:hdf5:1.10.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-17508

Products

Pricing

Contact Us