CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-5873

Unquoted Windows search path vulnerability in the guest service in Unisys s-Par before 4.4.20 allows local users to gain privileges via a Trojan horse executable file in the %SYSTEMDRIVE% directory, as demonstrated by program.exe.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.7%

CVSS Severity

CVSS v3 Score 6.7

CVSS v2 Score 4.6

References

http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=41
http://public.support.unisys.com/common/public/vulnerability/NVD_Detail_Rpt.aspx?ID=41

Products affected by CVE-2017-5873

Unisys » Secure Partitioning » Version: 4.3.403

cpe:2.3:a:unisys:secure_partitioning:4.3.403
Unisys » Secure Partitioning » Version: 4.4.19

cpe:2.3:a:unisys:secure_partitioning:4.4.19

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-5873

Products

Pricing

Contact Us