CVE-2017-6552

{"id": "CVE-2017-6552", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.8, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:C", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "COMPLETE", "confidentialityImpact": "NONE"}, "acInsufInfo": true, "impactScore": 6.9, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}], "cvssMetricV30": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"scope": "UNCHANGED", "version": "3.0", "baseScore": 7.5, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H", "integrityImpact": "NONE", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "NONE", "confidentialityImpact": "NONE"}, "impactScore": 3.6, "exploitabilityScore": 3.9}]}, "published": "2017-03-09T09:59:00.287", "references": [{"url": "http://www.securityfocus.com/bid/96827", "source": "cve@mitre.org"}, {"url": "https://www.exploit-db.com/exploits/41565/", "source": "cve@mitre.org"}, {"url": "https://www.youtube.com/watch?v=ShCs5_8mBlM&t=37s", "tags": ["Third Party Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/96827", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.exploit-db.com/exploits/41565/", "source": "af854a3a-2127-422b-91ae-364da2661108"}, {"url": "https://www.youtube.com/watch?v=ShCs5_8mBlM&t=37s", "tags": ["Third Party Advisory"], "source": "af854a3a-2127-422b-91ae-364da2661108"}], "vulnStatus": "Modified", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "CWE-400"}]}], "descriptions": [{"lang": "en", "value": "Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 devices have an insufficiently large default value for the maximum IPv6 routing table size: it can be filled within minutes. An attacker can exploit this issue to render the affected system unresponsive, resulting in a denial-of-service condition for telephone, Internet, and TV services."}, {"lang": "es", "value": "Dispositivos Livebox 3 Sagemcom SG30_sip-fr-5.15.8.1 tienen un valor predeterminado insuficientemente grande para el tama\u00f1o m\u00e1ximo de la tabla de enrutamiento IPV6: puede ser llenado en minutos. Un atacante puede explotar este problema para hacer que el sistema afectado no responda, resultando en una condici\u00f3n de denegaci\u00f3n de servicio para los servicios de tel\u00e9fono, Internet y TV."}], "lastModified": "2024-11-21T03:30:00.713", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:sagemcom:livebox_firmware:5.15.8.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "449D1F92-0C67-48BA-AE29-48F0B4D0CD72"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:sagemcom:livebox:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "03E8578B-AEF6-492C-88FB-00D68C776B5E"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "cve@mitre.org"}