CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2017-9025

Heap buffer overflow in vshttpd (aka ioos) in HooToo Trip Mate 6 (TM6) firmware 2.000.030 and earlier allows remote unauthenticated attackers to control the program counter via a specially crafted HTTP Cookie header.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.039

EPSS Ranking 87.9%

CVSS Severity

CVSS v3 Score 6.5

CVSS v2 Score 6.4

References

http://debugtrap.com/2017/05/09/tm06-vulnerabilities/
http://debugtrap.com/2017/05/09/tm06-vulnerabilities/

Products affected by CVE-2017-9025

Hootoo » Trip Mate 6 » Version: N/A

cpe:2.3:h:hootoo:trip_mate_6:-
Hootoo » Trip Mate 6 Firmware » Version: 2.000.030

cpe:2.3:o:hootoo:trip_mate_6_firmware:2.000.030

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-9025

Products

Pricing

Contact Us