CVE-2017-7552

5 documents5 sources

Severity

9.8CRITICAL

EPSS

0.4%

top 40.02%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Redhat Mobile Application Platform

Timeline

PublishedSep 29

Latest updateMay 13

Description

A flaw was discovered in the file editor of millicore, affecting versions before 3.19.0 and 4.x before 4.5.0, which allows files to be executed as well as created. An attacker could use this flaw to compromise other users or teams projects stored in source control management of the RHMAP Core installation.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages1 packages

▶NVDredhat/mobile_application_platform4.4.3

🔴Vulnerability Details

GHSA

GHSA-jc66-7vpm-57fw: A flaw was discovered in the file editor of millicore, affecting versions before 3↗2022-05-13

▶

CVEList

CVE-2017-7552: A flaw was discovered in the file editor of millicore, affecting versions before 3↗2017-09-28

▶

📋Vendor Advisories

Red Hat

RHMAP Millicore IDE allows RCE on SCM↗2017-09-11

▶

💬Community

Bugzilla

CVE-2017-7552 RHMAP Millicore IDE allows RCE on SCM↗2017-08-03

▶