Multiple unquoted service path vulnerabilities in Sierra Wireless Windows Mobile Broadband Driver Package (MBDP) with build ID < 4657 allows local users to launch processes with elevated privileges.
References
Link | Resource |
---|---|
http://support.lenovo.com/us/en/product_security/LEN-12739 | Third Party Advisory |
https://source.sierrawireless.com/resources/airprime/software/cve-2017-9247-unquoted-service-path-vulnerabilities/ | Vendor Advisory |
http://support.lenovo.com/us/en/product_security/LEN-12739 | Third Party Advisory |
https://source.sierrawireless.com/resources/airprime/software/cve-2017-9247-unquoted-service-path-vulnerabilities/ | Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 03:35
Type | Values Removed | Values Added |
---|---|---|
References | () http://support.lenovo.com/us/en/product_security/LEN-12739 - Third Party Advisory | |
References | () https://source.sierrawireless.com/resources/airprime/software/cve-2017-9247-unquoted-service-path-vulnerabilities/ - Vendor Advisory |
Information
Published : 2017-08-02 19:29
Updated : 2024-11-21 03:35
NVD link : CVE-2017-9247
Mitre link : CVE-2017-9247
CVE.ORG link : CVE-2017-9247
JSON object : View
Products Affected
sierrawireless
- sierra_wireless_location_sensor_driver
- sierra_wireless_em7345_software
- sierra_wireless_em7455_software
CWE
CWE-428
Unquoted Search Path or Element