CVE-2017-4997

EMC VASA Provider Virtual Appliance versions 8.3.x and prior has an unauthenticated remote code execution vulnerability that could potentially be exploited by malicious users to compromise the affected system.

Published: Jun 29, 2017
Updated: Apr 13, 2023
CVE: CVE-2017-4997
Severity: Critical
Exploit:

CVSS v3:

Severity: Critical
Score: 9.8
AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CVSS v2:

Severity: High
Score: 10
AV:N/AC:L/Au:N/C:C/I:C/A:C

CWEs:

CWE-20

Affected Software
References

Software	From	Fixed in
dell / emc_vasa_provider_virtual_appliance	-	8.3.0.x

http://www.securityfocus.com/archive/1/540783/30/0/threaded
http://www.securityfocus.com/bid/99169

Vulnerability Database

289,697

CVE-2017-4997