CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2154

Untrusted search path vulnerability in Hanako 2017, Hanako 2016, Hanako 2015, Hanako Pro 3, JUST Office 3 [Standard], JUST Office 3 [Eco Print Package], JUST Office 3 & Tri-De DataProtect Package, JUST Government 3, JUST Jump Class 2, JUST Frontier 3, JUST School 6 Premium, Hanako Police 5, JUST Police 3, Hanako 2017 trial version allows remote attackers to gain privileges via a Trojan horse DLL in an unspecified directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 52.9%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

Products affected by CVE-2017-2154

Justsystems » Hanako » Version: 2015

cpe:2.3:a:justsystems:hanako:2015
Justsystems » Hanako » Version: 2016

cpe:2.3:a:justsystems:hanako:2016
Justsystems » Hanako » Version: 2017

cpe:2.3:a:justsystems:hanako:2017
Justsystems » Hanako Police » Version: 5

cpe:2.3:a:justsystems:hanako_police:5
Justsystems » Hanako Pro » Version: 3

cpe:2.3:a:justsystems:hanako_pro:3
Justsystems » Just Frontier » Version: 3

cpe:2.3:a:justsystems:just_frontier:3
Justsystems » Just Government » Version: 3

cpe:2.3:a:justsystems:just_government:3
Justsystems » Just Jump Class » Version: 2

cpe:2.3:a:justsystems:just_jump_class:2
Justsystems » Just Office » Version: 3

cpe:2.3:a:justsystems:just_office:3
Justsystems » Just Police » Version: 3

cpe:2.3:a:justsystems:just_police:3
Justsystems » Just School » Version: 6

cpe:2.3:a:justsystems:just_school:6

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2154

Products

Pricing

Contact Us