CVE-2017-17833
published 2018-04-23CVE-2017-17833: OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
OpenSLP releases in the 1.0.2 and 1.1.0 code streams have a heap-related memory corruption issue which may manifest itself as a denial-of-service or a remote code-execution vulnerability.
Affected
37 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| canonical | ubuntu_linux | — | — |
| canonical | ubuntu_linux | — | — |
| debian | debian_linux | — | — |
| lenovo | bm_nextscale_fan_power_controller | < 24p-2.15 | 24p-2.15 |
| lenovo | cmm | < 1.8.0 | 1.8.0 |
| lenovo | fan_power_controller | < 30r-1.13 | 30r-1.13 |
| lenovo | flex_system_fc3171_8gb_san_switch_firmware | < 9.1.13.02.00 | 9.1.13.02.00 |
| lenovo | imm1 | < 1.55 | 1.55 |
| lenovo | imm2 | < 4.70 | 4.70 |
| lenovo | storage_n3310_firmware | < 4.53.351 | 4.53.351 |
| lenovo | storage_n4610_firmware | < 4.53.351 | 4.53.351 |
| lenovo | thinkserver_rd340_firmware | < 50.00 | 50.00 |
| lenovo | thinkserver_rd350_firmware | < 4.53.351 | 4.53.351 |
| lenovo | thinkserver_rd440_firmware | <= 50.00 | — |
| lenovo | thinkserver_rd450_firmware | < 4.53.351 | 4.53.351 |
| lenovo | thinkserver_rd540_firmware | < 50.00 | 50.00 |
| lenovo | thinkserver_rd550_firmware | < 4.53.351 | 4.53.351 |
| lenovo | thinkserver_rd640_firmware | < 50.00 | 50.00 |
| lenovo | thinkserver_rd650_firmware | < 4.53.351 | 4.53.351 |
| lenovo | thinkserver_rq750_firmware | < 1.40 | 1.40 |
| lenovo | thinkserver_rs160_firmware | < 2.32 | 2.32 |
| lenovo | thinkserver_td340_firmware | < 46.00 | 46.00 |
| lenovo | thinkserver_td350_firmware | < 4.53.351 | 4.53.351 |
| lenovo | thinkserver_ts460_firmware | < 2.32 | 2.32 |
| lenovo | xclarity_administrator | < 1.4.0 | 1.4.0 |
CVSS provenance
nvdv3.09.8CRITICALCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
osv9.8CRITICAL