CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-6953

Gemalto SmartDiag Diagnosis Tool v2.5 has a stack-based Buffer Overflow with SEH Overwrite via long "Register a new card" input fields. There may be a risk of local code execution with untrusted input to SmartDiag.exe or SymDiag.exe.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 25.5%

CVSS Severity

CVSS v3 Score 7.8

CVSS v2 Score 4.6

References

https://www.exploit-db.com/exploits/41972/
https://www.exploit-db.com/exploits/41972/

Products affected by CVE-2017-6953

Gemalto » Smartdiag Diagnosis Tool » Version: 2.5

cpe:2.3:a:gemalto:smartdiag_diagnosis_tool:2.5

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-6953

Products

Pricing

Contact Us