CVE-2017-7307
NONE EPSS 25.1%
Published Apr 4, 20179y ago · Modified Jun 17, 20262w ago
Published Apr 4, 2017 9y ago
Last Modified Jun 17, 2026 2w ago
Description
Riverbed RiOS before 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically proximate attackers to obtain root privileges and access decrypted data by replacing the /opt/tms/bin/cli file.
Threat Intelligence
EPSS Exploit Probability
25.1% percentile
Exploit & Patch Status
No Known Exploit
No Patch Available
Weaknesses 1
CWE-732
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| riverbed | rios | * | ≤9.0.0b |
References 2
- seclists.org http://seclists.org/fulldisclosure/2017/Feb/25
- supportkb.riverbed.com https://supportkb.riverbed.com/support/index?page=content&id=S30065
Remediation
No remediation data recorded yet
Check vendor advisories and the NVD entry for patch availability.