CVE-2017-5670

NONE EPSS 33.7%
Published Apr 4, 20179y ago · Modified Jun 17, 20262w ago
Find Similar
Published Apr 4, 2017 9y ago
Last Modified Jun 17, 2026 2w ago

Description

Riverbed RiOS through 9.6.0 deletes the secure vault with the rm program (not shred or srm), which makes it easier for physically proximate attackers to obtain sensitive information by reading raw disk blocks.

Threat Intelligence

EPSS Exploit Probability
33.7% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-200 Exposure of Sensitive Information to an Unauthorized Actor Information Exposure

Affected Products 1

VendorProductVersionRange
riverbedrios* ≤9.6.0

References 4

  • seclists.org http://seclists.org/fulldisclosure/2017/Feb/25
    Mailing ListThird Party Advisory
  • securityfocus.com http://www.securityfocus.com/bid/96175
    Third Party AdvisoryVDB Entry
  • supportkb.riverbed.com https://supportkb.riverbed.com/support/index?page=content&id=S30065
    MitigationVendor Advisory
  • sysdream.com https://sysdream.com/news/lab/2017-02-15-riverbed-rios-insecure-cryptographic-storage-cve-2017-5670/

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.