CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-7555

Augeas versions up to and including 1.8.0 are vulnerable to heap-based buffer overflow due to improper handling of escaped strings. Attacker could send crafted strings that would cause the application using augeas to copy past the end of a buffer, leading to a crash or possible code execution.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.017

EPSS Ranking 81.4%

CVSS Severity

CVSS v3 Score 9.8

CVSS v2 Score 7.5

References

Products affected by CVE-2017-7555

Augeas » Augeas » Version: 0.0.1

cpe:2.3:a:augeas:augeas:0.0.1
Augeas » Augeas » Version: 0.0.2

cpe:2.3:a:augeas:augeas:0.0.2
Augeas » Augeas » Version: 0.0.3

cpe:2.3:a:augeas:augeas:0.0.3
Augeas » Augeas » Version: 0.0.4

cpe:2.3:a:augeas:augeas:0.0.4
Augeas » Augeas » Version: 0.0.5

cpe:2.3:a:augeas:augeas:0.0.5
Augeas » Augeas » Version: 0.0.6

cpe:2.3:a:augeas:augeas:0.0.6
Augeas » Augeas » Version: 0.0.7

cpe:2.3:a:augeas:augeas:0.0.7
Augeas » Augeas » Version: 0.0.8

cpe:2.3:a:augeas:augeas:0.0.8
Augeas » Augeas » Version: 0.1.0

cpe:2.3:a:augeas:augeas:0.1.0
Augeas » Augeas » Version: 0.1.1

cpe:2.3:a:augeas:augeas:0.1.1
Augeas » Augeas » Version: 0.10.0

cpe:2.3:a:augeas:augeas:0.10.0
Augeas » Augeas » Version: 0.2.0

cpe:2.3:a:augeas:augeas:0.2.0
Augeas » Augeas » Version: 0.2.1

cpe:2.3:a:augeas:augeas:0.2.1
Augeas » Augeas » Version: 0.2.2

cpe:2.3:a:augeas:augeas:0.2.2
Augeas » Augeas » Version: 0.3.0

cpe:2.3:a:augeas:augeas:0.3.0
Augeas » Augeas » Version: 0.3.1

cpe:2.3:a:augeas:augeas:0.3.1
Augeas » Augeas » Version: 0.3.2

cpe:2.3:a:augeas:augeas:0.3.2
Augeas » Augeas » Version: 0.3.3

cpe:2.3:a:augeas:augeas:0.3.3
Augeas » Augeas » Version: 0.3.4

cpe:2.3:a:augeas:augeas:0.3.4
Augeas » Augeas » Version: 0.3.5

cpe:2.3:a:augeas:augeas:0.3.5
Augeas » Augeas » Version: 0.3.6

cpe:2.3:a:augeas:augeas:0.3.6
Augeas » Augeas » Version: 0.4.0

cpe:2.3:a:augeas:augeas:0.4.0
Augeas » Augeas » Version: 0.4.1

cpe:2.3:a:augeas:augeas:0.4.1
Augeas » Augeas » Version: 0.4.2

cpe:2.3:a:augeas:augeas:0.4.2
Augeas » Augeas » Version: 0.5.0

cpe:2.3:a:augeas:augeas:0.5.0
Augeas » Augeas » Version: 0.5.1

cpe:2.3:a:augeas:augeas:0.5.1
Augeas » Augeas » Version: 0.5.2

cpe:2.3:a:augeas:augeas:0.5.2
Augeas » Augeas » Version: 0.5.3

cpe:2.3:a:augeas:augeas:0.5.3
Augeas » Augeas » Version: 0.6.0

cpe:2.3:a:augeas:augeas:0.6.0
Augeas » Augeas » Version: 0.7.0

cpe:2.3:a:augeas:augeas:0.7.0
Augeas » Augeas » Version: 0.7.1

cpe:2.3:a:augeas:augeas:0.7.1
Augeas » Augeas » Version: 0.7.2

cpe:2.3:a:augeas:augeas:0.7.2
Augeas » Augeas » Version: 0.7.3

cpe:2.3:a:augeas:augeas:0.7.3
Augeas » Augeas » Version: 0.7.4

cpe:2.3:a:augeas:augeas:0.7.4
Augeas » Augeas » Version: 0.8.0

cpe:2.3:a:augeas:augeas:0.8.0
Augeas » Augeas » Version: 0.8.1

cpe:2.3:a:augeas:augeas:0.8.1
Augeas » Augeas » Version: 0.9.0

cpe:2.3:a:augeas:augeas:0.9.0
Augeas » Augeas » Version: 1.0.0

cpe:2.3:a:augeas:augeas:1.0.0
Augeas » Augeas » Version: 1.1.0

cpe:2.3:a:augeas:augeas:1.1.0
Augeas » Augeas » Version: 1.8.0

cpe:2.3:a:augeas:augeas:1.8.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-7555

Products

Pricing

Contact Us