Buffer Overflow Vulnerability in Disk Sorter Enterprise by Flexense
CVE-2017-7230

9.8CRITICAL

Key Information:

Vendor: Disksorter
Status: Disk Sorter
Vendor: CVE Published:; 22 March 2017

What is CVE-2017-7230?

A buffer overflow vulnerability exists in Disk Sorter Enterprise versions 9.5.12 and earlier. This flaw allows remote attackers to execute arbitrary code through specially crafted GET requests, potentially compromising system integrity and enabling unauthorized access to sensitive information.

References

http://www.securityfocus.com/bid/97195

vdb-entryx_refsource_BID

https://www.exploit-db.com/exploits/41666/

exploitx_refsource_EXPLOIT-DB

EPSS Score

65% chance of being exploited in the next 30 days.

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Mar 22, 2017
Vulnerability Reserved
Mar 22, 2017

JSON

Disksorter

What is CVE-2017-7230?

References

EPSS Score

CVSS V3.1

Timeline