Vulnerability Details CVE-2017-9247
Multiple unquoted service path vulnerabilities in Sierra Wireless Windows Mobile Broadband Driver Package (MBDP) with build ID < 4657 allows local users to launch processes with elevated privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 0.0%
CVSS Severity
CVSS v3 Score 7.8
CVSS v2 Score 4.6
References
- http://support.lenovo.com/us/en/product_security/LEN-12739
- https://source.sierrawireless.com/resources/airprime/software/cve-2017-9247-unquoted-service-path-vulnerabilities/
- http://support.lenovo.com/us/en/product_security/LEN-12739
- https://source.sierrawireless.com/resources/airprime/software/cve-2017-9247-unquoted-service-path-vulnerabilities/
Products affected by CVE-2017-9247
-
cpe:2.3:a:sierrawireless:sierra_wireless_em7345_software:-
-
cpe:2.3:a:sierrawireless:sierra_wireless_em7455_software:-
-
cpe:2.3:a:sierrawireless:sierra_wireless_location_sensor_driver:-