Denial of Service Vulnerability in I-O DATA DEVICE LAN DISK Connect
CVE-2017-10875

7.5HIGH

Key Information:

Vendor: I-o Data Device, Inc.
Status: Lan Disk Connect
Vendor: CVE Published:; 13 November 2017

🔔 Create I-o Data Device, Inc. Vulnerability Alert

What is CVE-2017-10875?

The I-O DATA DEVICE LAN DISK Connect application, up to version 2.02, is vulnerable to a denial of service attack. Attackers can exploit unspecified vectors within the application to disrupt its availability, potentially resulting in loss of access to data and services for users. Organizations using these affected products should apply necessary patches or mitigations to safeguard against possible exploitation.

Affected Version(s)

LAN DISK Connect Ver2.02 and earlier

References

http://jvn.jp/en/jp/JVN87886530/index.html

third-party-advisoryx_refsource_JVN

http://www.iodata.jp/support/information/2017/ld-connect/

x_refsource_CONFIRM

CVSS V3.1

Score:

7.5

Severity:

HIGH

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Nov 13, 2017
Vulnerability Reserved
Jul 4, 2017