CVE-2017-7307

NONE EPSS 25.1%
Published Apr 4, 20179y ago · Modified Jun 17, 20262w ago
Find Similar
Published Apr 4, 2017 9y ago
Last Modified Jun 17, 2026 2w ago

Description

Riverbed RiOS before 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically proximate attackers to obtain root privileges and access decrypted data by replacing the /opt/tms/bin/cli file.

Threat Intelligence

EPSS Exploit Probability
25.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available

Weaknesses 1

CWE-732

Affected Products 1

VendorProductVersionRange
riverbedrios* ≤9.0.0b

References 2

  • seclists.org http://seclists.org/fulldisclosure/2017/Feb/25
    Mailing ListThird Party Advisory
  • supportkb.riverbed.com https://supportkb.riverbed.com/support/index?page=content&id=S30065
    MitigationVendor Advisory

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.