CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-6520

The Multicast DNS (mDNS) responder used in BOSE Soundtouch 30 inadvertently responds to IPv4 unicast queries with source addresses that are not link-local, which allows remote attackers to cause a denial of service (traffic amplification) or obtain potentially sensitive information via port-5353 UDP packets.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.008

EPSS Ranking 73.2%

CVSS Severity

CVSS v3 Score 9.1

CVSS v2 Score 6.4

References

https://www.secfu.net/advisories
https://www.secfu.net/advisories

Products affected by CVE-2017-6520

Bose » Soundtouch 30 » Version: N/A

cpe:2.3:h:bose:soundtouch_30:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6520

Products

Pricing

Contact Us