Vulnerability Details CVE-2017-7307
Riverbed RiOS before 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically proximate attackers to obtain root privileges and access decrypted data by replacing the /opt/tms/bin/cli file.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 11.6%
CVSS Severity
CVSS v3 Score 6.8
CVSS v2 Score 7.2
References
Products affected by CVE-2017-7307
-
cpe:2.3:o:riverbed:rios:4.1.12
-
cpe:2.3:o:riverbed:rios:4.1.12c
-
cpe:2.3:o:riverbed:rios:5.0.10d
-
cpe:2.3:o:riverbed:rios:5.0.11
-
cpe:2.3:o:riverbed:rios:5.0.11b
-
cpe:2.3:o:riverbed:rios:5.0.5
-
cpe:2.3:o:riverbed:rios:5.0.9f
-
cpe:2.3:o:riverbed:rios:5.5.6i
-
cpe:2.3:o:riverbed:rios:5.5.8
-
cpe:2.3:o:riverbed:rios:5.5.9
-
cpe:2.3:o:riverbed:rios:5.5.9b
-
cpe:2.3:o:riverbed:rios:6.0.1e
-
cpe:2.3:o:riverbed:rios:6.0.2
-
cpe:2.3:o:riverbed:rios:6.0.2c
-
cpe:2.3:o:riverbed:rios:6.0.3a
-
cpe:2.3:o:riverbed:rios:6.0.4
-
cpe:2.3:o:riverbed:rios:6.0.4c
-
cpe:2.3:o:riverbed:rios:6.1.1
-
cpe:2.3:o:riverbed:rios:6.1.2b
-
cpe:2.3:o:riverbed:rios:6.1.3a
-
cpe:2.3:o:riverbed:rios:6.1.3b
-
cpe:2.3:o:riverbed:rios:6.1.3c
-
cpe:2.3:o:riverbed:rios:6.1.4
-
cpe:2.3:o:riverbed:rios:6.1.5b
-
cpe:2.3:o:riverbed:rios:6.1.5c
-
cpe:2.3:o:riverbed:rios:6.5
-
cpe:2.3:o:riverbed:rios:6.5.0a
-
cpe:2.3:o:riverbed:rios:6.5.1
-
cpe:2.3:o:riverbed:rios:6.5.1a
-
cpe:2.3:o:riverbed:rios:6.5.2
-
cpe:2.3:o:riverbed:rios:6.5.2a
-
cpe:2.3:o:riverbed:rios:6.5.2b
-
cpe:2.3:o:riverbed:rios:6.5.4
-
cpe:2.3:o:riverbed:rios:6.5.4a
-
cpe:2.3:o:riverbed:rios:6.5.4b
-
cpe:2.3:o:riverbed:rios:6.5.5
-
cpe:2.3:o:riverbed:rios:6.5.5a
-
cpe:2.3:o:riverbed:rios:6.5.5b
-
cpe:2.3:o:riverbed:rios:6.5.6
-
cpe:2.3:o:riverbed:rios:6.5.6a
-
cpe:2.3:o:riverbed:rios:6.5.6b
-
cpe:2.3:o:riverbed:rios:7.0.1
-
cpe:2.3:o:riverbed:rios:7.0.2
-
cpe:2.3:o:riverbed:rios:7.0.2a
-
cpe:2.3:o:riverbed:rios:7.0.2c
-
cpe:2.3:o:riverbed:rios:7.0.3a
-
cpe:2.3:o:riverbed:rios:7.0.3c
-
cpe:2.3:o:riverbed:rios:7.0.4
-
cpe:2.3:o:riverbed:rios:7.0.5
-
cpe:2.3:o:riverbed:rios:7.0.5a
-
cpe:2.3:o:riverbed:rios:7.0.5b
-
cpe:2.3:o:riverbed:rios:7.0.5c
-
cpe:2.3:o:riverbed:rios:7.0.5d
-
cpe:2.3:o:riverbed:rios:7.0.6
-
cpe:2.3:o:riverbed:rios:7.0.6b
-
cpe:2.3:o:riverbed:rios:7.0.6c
-
cpe:2.3:o:riverbed:rios:8.0.0
-
cpe:2.3:o:riverbed:rios:8.0.1
-
cpe:2.3:o:riverbed:rios:8.0.1a
-
cpe:2.3:o:riverbed:rios:8.0.2
-
cpe:2.3:o:riverbed:rios:8.0.2b
-
cpe:2.3:o:riverbed:rios:8.0.2c
-
cpe:2.3:o:riverbed:rios:8.0.3
-
cpe:2.3:o:riverbed:rios:8.0.3a
-
cpe:2.3:o:riverbed:rios:8.0.4
-
cpe:2.3:o:riverbed:rios:8.0.5
-
cpe:2.3:o:riverbed:rios:8.0.6
-
cpe:2.3:o:riverbed:rios:8.0.6a
-
cpe:2.3:o:riverbed:rios:8.0.6b
-
cpe:2.3:o:riverbed:rios:8.0.6c
-
cpe:2.3:o:riverbed:rios:8.5.2c
-
cpe:2.3:o:riverbed:rios:8.5.3
-
cpe:2.3:o:riverbed:rios:8.5.3a
-
cpe:2.3:o:riverbed:rios:8.5.3b
-
cpe:2.3:o:riverbed:rios:8.5.3c
-
cpe:2.3:o:riverbed:rios:8.6.0
-
cpe:2.3:o:riverbed:rios:8.6.0a
-
cpe:2.3:o:riverbed:rios:8.6.1
-
cpe:2.3:o:riverbed:rios:8.6.1a
-
cpe:2.3:o:riverbed:rios:8.6.1b
-
cpe:2.3:o:riverbed:rios:8.6.2
-
cpe:2.3:o:riverbed:rios:8.6.2a
-
cpe:2.3:o:riverbed:rios:8.6.2b
-
cpe:2.3:o:riverbed:rios:8.6.2c
-
cpe:2.3:o:riverbed:rios:8.6.2d
-
cpe:2.3:o:riverbed:rios:8.6.3
-
cpe:2.3:o:riverbed:rios:9.0.0
-
cpe:2.3:o:riverbed:rios:9.0.0a
-
cpe:2.3:o:riverbed:rios:9.0.0b