Vulnerability Details CVE-2017-2161
FlashAirTM SDHC Memory Card (SD-WE Series <W-03>) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series <W-02>) V2.00.04 and earlier allows authenticated attackers to bypass access restrictions to obtain unauthorized image data via unspecified vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 27.3%
CVSS Severity
CVSS v3 Score 3.5
CVSS v2 Score 2.7
References
- http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html
- http://www.toshiba-personalstorage.net/news/20170516a.htm
- https://jvn.jp/en/jp/JVN46372675/index.html
- http://jvndb.jvn.jp/en/contents/2017/JVNDB-2017-000090.html
- http://www.toshiba-personalstorage.net/news/20170516a.htm
- https://jvn.jp/en/jp/JVN46372675/index.html
Products affected by CVE-2017-2161
-
cpe:2.3:a:toshiba:flashair:1.00.03
-
cpe:2.3:a:toshiba:flashair:1.00.04
-
cpe:2.3:a:toshiba:flashair:1.00.06
-
cpe:2.3:a:toshiba:flashair:1.02
-
cpe:2.3:a:toshiba:flashair:2.00.03
-
cpe:2.3:a:toshiba:flashair:2.00.04
-
cpe:2.3:a:toshiba:flashair:3.0.2
-
cpe:2.3:a:toshiba:flashair:3.00.01
-
cpe:2.3:a:toshiba:flashair:3.00.02