CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-2156

Untrusted search path vulnerability in Vivaldi installer for Windows prior to version 1.7.735.48 allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.6%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 6.8

References

http://www.securityfocus.com/bid/98040
https://jvn.jp/en/jp/JVN71572107/index.html
https://vivaldi.com/security/vulnerability-disclosure-vivaldi-installer-for-windows-could-run-arbitrary-downloaded-code-jvn71572107/
http://www.securityfocus.com/bid/98040
https://jvn.jp/en/jp/JVN71572107/index.html
https://vivaldi.com/security/vulnerability-disclosure-vivaldi-installer-for-windows-could-run-arbitrary-downloaded-code-jvn71572107/

Products affected by CVE-2017-2156

Vivaldi » Vivaldi Installer For Windows » Version: Any

cpe:2.3:a:vivaldi:vivaldi_installer_for_windows:*

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-2156

Products

Pricing

Contact Us