cvelistv5 - cve-2017-3767

cve-2017-3767

Vulnerability from cvelistv5

Published

2017-11-13 16:00

Modified

2024-09-17 01:27

Severity ?

Summary

References

▼	URL	Tags
	psirt@lenovo.com	https://support.lenovo.com/us/en/product_security/LEN-15759	Issue Tracking, Third Party Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://support.lenovo.com/us/en/product_security/LEN-15759	Issue Tracking, Third Party Advisory

Impacted products

	Vendor	Product	Version
	Lenovo Group Ltd.	Realtek Audio Driver	Version: Earlier than 6.0.1.8224

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T14:39:40.326Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Realtek Audio Driver",
          "vendor": "Lenovo Group Ltd.",
          "versions": [
            {
              "status": "affected",
              "version": "Earlier than 6.0.1.8224"
            }
          ]
        }
      ],
      "datePublic": "2017-11-09T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "Local priviledge escalation",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-11-13T15:57:01",
        "orgId": "da227ddf-6e25-4b41-b023-0f976dcaca4b",
        "shortName": "lenovo"
      },
      "references": [
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@lenovo.com",
          "DATE_PUBLIC": "2017-11-09T00:00:00",
          "ID": "CVE-2017-3767",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Realtek Audio Driver",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Earlier than 6.0.1.8224"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "Lenovo Group Ltd."
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "Local priviledge escalation"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.lenovo.com/us/en/product_security/LEN-15759",
              "refsource": "CONFIRM",
              "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "da227ddf-6e25-4b41-b023-0f976dcaca4b",
    "assignerShortName": "lenovo",
    "cveId": "CVE-2017-3767",
    "datePublished": "2017-11-13T16:00:00Z",
    "dateReserved": "2016-12-16T00:00:00",
    "dateUpdated": "2024-09-17T01:27:06.643Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "nvd": "{\"cve\":{\"id\":\"CVE-2017-3767\",\"sourceIdentifier\":\"psirt@lenovo.com\",\"published\":\"2017-11-13T16:29:00.293\",\"lastModified\":\"2024-11-21T03:26:05.980\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.\"},{\"lang\":\"es\",\"value\":\"Se ha identificado una vulnerabilidad de escalado de privilegios en las versiones anteriores a la 6.0.1.8224 del controlador de audio Realtek en productos Lenovo ThinkPad. Un atacante con privilegios locales podr\u00eda ejecutar c\u00f3digo con privilegios administrativos.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":7.8,\"baseSeverity\":\"HIGH\",\"attackVector\":\"LOCAL\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"LOW\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":1.8,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:L/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":7.2,\"accessVector\":\"LOCAL\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":3.9,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"NVD-CWE-noinfo\"}]}],\"configurations\":[{\"operator\":\"AND\",\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:realtek:audio_driver_firmware:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"6.0.1.8224\",\"matchCriteriaId\":\"C5CB6C7A-AC02-466E-A751-95E5D7DC05A2\"}]},{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_10:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08D70BE2-1945-4164-ACE8-8BBCDE1D6D67\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_11e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"247E4294-2547-4A1D-942A-170DA5DDB388\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_13:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3AAD24C2-BA08-4827-A19A-33C4D71C573F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_l450:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"7A581500-3F97-4B68-92F9-0EE9182603CE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_l460:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25DE4E9C-5296-4FB5-A2FD-363D4682E6D6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_l470_kbl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"480D7F96-0F40-411A-9EE9-7640E9B7E8C7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_l470_skl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1C86E79D-F40D-4151-A5CA-C797A40D7ADF\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_l560:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"4FDA2BC8-0ABC-41EA-80BF-00B36564F0A1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_p50:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2A146DB0-4E3D-491B-8D30-EBF0F3BC17B2\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_p50s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F583B121-A68C-463B-9D72-06061F74D007\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_p51s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A84E6D8C-CB5E-4B50-B364-4E8AB4985A57\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_p70:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A1669BD8-C96F-4302-8E80-53D90EA719CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_p71:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FF50A012-EFAE-485E-AADB-7D0AADEF21AC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_s1:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CBA5DC9E-8AC7-4A57-979A-09B93FADF461\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_s1_yoga:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"39513D4D-DE8B-4D9C-BB79-EFAD6E3226B1\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_s1_yoga_12:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"52944176-C48C-4439-B0F5-9584491867CA\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_s2:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"546EB3DE-4A03-4C52-A00C-FDCBFBD21EB3\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t440:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"28A4F2A0-BA6D-48F7-8805-7CE17AEE6DE5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t440p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55A6E989-646D-4B08-A475-BFF70B6286F4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t440s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DAF1A0BA-A517-4BDA-9B10-07284A572577\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t450:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D943E973-EEAF-48E6-BD8A-05C61EA4FD0D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t450s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BDB7FFCD-F586-4846-9053-B56EA599D4EE\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t460:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D86FD3AD-D731-4C30-8A72-EC1A45B203F0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t460p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C1E6AE13-913E-4FD7-A0DC-F554605F81B6\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t460s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75E38817-144F-41B9-9EE5-2A78F4DBC718\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t470:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6515A024-F5A8-494F-BCB6-0DD2D1CA4EA7\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t470p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8796BA28-2705-4798-A95C-A821BB941A03\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t470s_skl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B71CE5D-B293-452A-919E-F55857AFD7C0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t540p:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E207A025-49AB-4886-BDD9-36D624D40D6F\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t550:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9D79966D-08A3-428F-B4EC-CAAC8F4CF435\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t560:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"84478711-E030-42CD-9B8A-0C54C8DB8128\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_t570:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BEC1A912-C9FA-4D12-97A3-1D53B8209314\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_w540:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B72A36A5-900B-4FFD-AF2D-FECD35E15AF5\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_w541:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"86A51FFE-257C-4609-BC14-C0DE0969E7F9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_w550s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"23267973-5F08-43C5-9C92-F429B84D3245\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x1_carbon:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0B9E7845-CEA3-43A4-8978-F447A45E0E53\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x1_tablet:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"33C63844-B6F1-46B4-9267-361D7B94FD8D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x1_yoga:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"45044ABC-76BF-475E-9B12-A77901172E5D\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x1c:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3F037D95-3E77-49DF-9E06-A30A94A499AB\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x240:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F4E250F0-9F11-4BD6-A71A-4D2C82F193B9\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x240s:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2462DB48-9AC0-4E1F-A925-2DFC0CB54BB0\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x250:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AEA076E5-D554-4570-B5E3-FE78CEC024B4\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x260:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"08393A13-D68E-4042-B223-EF80E581EEBC\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x270_kbl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"48C5691D-3050-4436-B5E6-2D0D2FBF8A10\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_x270_skl:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"014780DC-38B1-45B0-A94C-85B80C784758\"},{\"vulnerable\":false,\"criteria\":\"cpe:2.3:h:lenovo:thinkpad_yoga_11e:-:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F6C2E66F-B45C-4850-8C19-2AD84939173C\"}]}]}],\"references\":[{\"url\":\"https://support.lenovo.com/us/en/product_security/LEN-15759\",\"source\":\"psirt@lenovo.com\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://support.lenovo.com/us/en/product_security/LEN-15759\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]}]}}"
  }
}

ghsa-wx9c-8pc3-wpmm

Vulnerability from github

Published

2022-05-13 01:45

Modified

2022-05-13 01:45

Severity ?

7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2017-3767"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-11-13T16:29:00Z",
    "severity": "HIGH"
  },
  "details": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.",
  "id": "GHSA-wx9c-8pc3-wpmm",
  "modified": "2022-05-13T01:45:53Z",
  "published": "2022-05-13T01:45:53Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2017-3767"
    },
    {
      "type": "WEB",
      "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges. plural Lenovo ThinkPad Product Realtek Audio drivers contain vulnerabilities related to authorization, permissions, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. ThinkPad11e and other are notebook products of China Lenovo. Realtekaudiodriver is one of the audio drivers released by Realtek

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201711-0398",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "audio driver",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "realtek",
        "version": "6.0.1.8224"
      },
      {
        "model": "audio driver",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "realtek semiconductor corp",
        "version": "6.0.1.8224"
      },
      {
        "model": "thinkpad 11e/yoga 11e 20e5",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20e6",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20ed",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20e7",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20e8",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20ee",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad thinkpad s2 20gj",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "lenovo",
        "version": "13/"
      },
      {
        "model": "thinkpad 20gk",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20gu",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad helix 20cg",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20ch",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad l450 20ds",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad 20dt",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      },
      {
        "model": "thinkpad l460",
        "scope": null,
        "trust": 0.6,
        "vendor": "lenovo",
        "version": null
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:realtek:audio_driver_firmware",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      }
    ]
  },
  "cve": "CVE-2017-3767",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.9,
            "id": "CVE-2017-3767",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 1.8,
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 3.9,
            "id": "CNVD-2017-36547",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "author": "nvd@nist.gov",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 1.8,
            "id": "CVE-2017-3767",
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "trust": 1.8,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2017-3767",
            "trust": 1.0,
            "value": "HIGH"
          },
          {
            "author": "NVD",
            "id": "CVE-2017-3767",
            "trust": 0.8,
            "value": "High"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2017-36547",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201711-383",
            "trust": 0.6,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges. plural Lenovo ThinkPad Product Realtek Audio drivers contain vulnerabilities related to authorization, permissions, and access control.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. ThinkPad11e and other are notebook products of China Lenovo. Realtekaudiodriver is one of the audio drivers released by Realtek",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      }
    ],
    "trust": 2.16
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2017-3767",
        "trust": 3.0
      },
      {
        "db": "LENOVO",
        "id": "LEN-15759",
        "trust": 1.6
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216",
        "trust": 0.8
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547",
        "trust": 0.6
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383",
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "id": "VAR-201711-0398",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      }
    ],
    "trust": 1.5692307692307692
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      }
    ]
  },
  "last_update_date": "2024-11-23T23:02:19.609000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "LEN-15759",
        "trust": 0.8,
        "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
      },
      {
        "title": "Patches for various Lenovo ThinkPad product local privilege escalation vulnerabilities",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchInfo/show/108341"
      },
      {
        "title": "Multiple Lenovo ThinkPad product Realtek Fixes for audio driver permissions and access control vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=76251"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "NVD-CWE-noinfo",
        "trust": 1.0
      },
      {
        "problemtype": "CWE-264",
        "trust": 0.8
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 1.6,
        "url": "https://support.lenovo.com/us/en/product_security/len-15759"
      },
      {
        "trust": 1.4,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2017-3767"
      },
      {
        "trust": 0.8,
        "url": "https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-3767"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      },
      {
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-12-07T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "date": "2017-12-07T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "date": "2017-11-17T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      },
      {
        "date": "2017-11-13T16:29:00.293000",
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-12-07T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-36547"
      },
      {
        "date": "2017-12-07T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      },
      {
        "date": "2019-10-23T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      },
      {
        "date": "2024-11-21T03:26:05.980000",
        "db": "NVD",
        "id": "CVE-2017-3767"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "local",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "plural  Lenovo ThinkPad Product  Realtek Vulnerabilities related to authorization, authority, and access control in audio drivers",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2017-010216"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "permissions and access control issues",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201711-383"
      }
    ],
    "trust": 0.6
  }
}

fkie_cve-2017-3767

Vulnerability from fkie_nvd

Published

2017-11-13 16:29

Modified

2024-11-21 03:26

Severity ?

7.8 (High) - CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Summary

References

▼	URL	Tags
	psirt@lenovo.com	https://support.lenovo.com/us/en/product_security/LEN-15759	Issue Tracking, Third Party Advisory
	af854a3a-2127-422b-91ae-364da2661108	https://support.lenovo.com/us/en/product_security/LEN-15759	Issue Tracking, Third Party Advisory

Impacted products

Vendor	Product	Version
realtek	audio_driver_firmware	*
lenovo	thinkpad_10	-
lenovo	thinkpad_11e	-
lenovo	thinkpad_13	-
lenovo	thinkpad_l450	-
lenovo	thinkpad_l460	-
lenovo	thinkpad_l470_kbl	-
lenovo	thinkpad_l470_skl	-
lenovo	thinkpad_l560	-
lenovo	thinkpad_p50	-
lenovo	thinkpad_p50s	-
lenovo	thinkpad_p51s	-
lenovo	thinkpad_p70	-
lenovo	thinkpad_p71	-
lenovo	thinkpad_s1	-
lenovo	thinkpad_s1_yoga	-
lenovo	thinkpad_s1_yoga_12	-
lenovo	thinkpad_s2	-
lenovo	thinkpad_t440	-
lenovo	thinkpad_t440p	-
lenovo	thinkpad_t440s	-
lenovo	thinkpad_t450	-
lenovo	thinkpad_t450s	-
lenovo	thinkpad_t460	-
lenovo	thinkpad_t460p	-
lenovo	thinkpad_t460s	-
lenovo	thinkpad_t470	-
lenovo	thinkpad_t470p	-
lenovo	thinkpad_t470s_skl	-
lenovo	thinkpad_t540p	-
lenovo	thinkpad_t550	-
lenovo	thinkpad_t560	-
lenovo	thinkpad_t570	-
lenovo	thinkpad_w540	-
lenovo	thinkpad_w541	-
lenovo	thinkpad_w550s	-
lenovo	thinkpad_x1_carbon	-
lenovo	thinkpad_x1_tablet	-
lenovo	thinkpad_x1_yoga	-
lenovo	thinkpad_x1c	-
lenovo	thinkpad_x240	-
lenovo	thinkpad_x240s	-
lenovo	thinkpad_x250	-
lenovo	thinkpad_x260	-
lenovo	thinkpad_x270_kbl	-
lenovo	thinkpad_x270_skl	-
lenovo	thinkpad_yoga_11e	-

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:realtek:audio_driver_firmware:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C5CB6C7A-AC02-466E-A751-95E5D7DC05A2",
              "versionEndExcluding": "6.0.1.8224",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        },
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_10:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "08D70BE2-1945-4164-ACE8-8BBCDE1D6D67",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_11e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "247E4294-2547-4A1D-942A-170DA5DDB388",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_13:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3AAD24C2-BA08-4827-A19A-33C4D71C573F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_l450:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "7A581500-3F97-4B68-92F9-0EE9182603CE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_l460:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "25DE4E9C-5296-4FB5-A2FD-363D4682E6D6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_l470_kbl:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "480D7F96-0F40-411A-9EE9-7640E9B7E8C7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_l470_skl:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "1C86E79D-F40D-4151-A5CA-C797A40D7ADF",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_l560:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "4FDA2BC8-0ABC-41EA-80BF-00B36564F0A1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_p50:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2A146DB0-4E3D-491B-8D30-EBF0F3BC17B2",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_p50s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F583B121-A68C-463B-9D72-06061F74D007",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_p51s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A84E6D8C-CB5E-4B50-B364-4E8AB4985A57",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_p70:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "A1669BD8-C96F-4302-8E80-53D90EA719CA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_p71:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "FF50A012-EFAE-485E-AADB-7D0AADEF21AC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_s1:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "CBA5DC9E-8AC7-4A57-979A-09B93FADF461",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_s1_yoga:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "39513D4D-DE8B-4D9C-BB79-EFAD6E3226B1",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_s1_yoga_12:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "52944176-C48C-4439-B0F5-9584491867CA",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_s2:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "546EB3DE-4A03-4C52-A00C-FDCBFBD21EB3",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t440:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "28A4F2A0-BA6D-48F7-8805-7CE17AEE6DE5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t440p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "55A6E989-646D-4B08-A475-BFF70B6286F4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t440s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "DAF1A0BA-A517-4BDA-9B10-07284A572577",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t450:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D943E973-EEAF-48E6-BD8A-05C61EA4FD0D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t450s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BDB7FFCD-F586-4846-9053-B56EA599D4EE",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t460:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "D86FD3AD-D731-4C30-8A72-EC1A45B203F0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t460p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1E6AE13-913E-4FD7-A0DC-F554605F81B6",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t460s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "75E38817-144F-41B9-9EE5-2A78F4DBC718",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t470:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "6515A024-F5A8-494F-BCB6-0DD2D1CA4EA7",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t470p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "8796BA28-2705-4798-A95C-A821BB941A03",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t470s_skl:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B71CE5D-B293-452A-919E-F55857AFD7C0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t540p:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "E207A025-49AB-4886-BDD9-36D624D40D6F",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t550:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "9D79966D-08A3-428F-B4EC-CAAC8F4CF435",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t560:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "84478711-E030-42CD-9B8A-0C54C8DB8128",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_t570:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "BEC1A912-C9FA-4D12-97A3-1D53B8209314",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_w540:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "B72A36A5-900B-4FFD-AF2D-FECD35E15AF5",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_w541:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "86A51FFE-257C-4609-BC14-C0DE0969E7F9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_w550s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "23267973-5F08-43C5-9C92-F429B84D3245",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x1_carbon:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "0B9E7845-CEA3-43A4-8978-F447A45E0E53",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x1_tablet:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "33C63844-B6F1-46B4-9267-361D7B94FD8D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x1_yoga:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "45044ABC-76BF-475E-9B12-A77901172E5D",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x1c:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "3F037D95-3E77-49DF-9E06-A30A94A499AB",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x240:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F4E250F0-9F11-4BD6-A71A-4D2C82F193B9",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x240s:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "2462DB48-9AC0-4E1F-A925-2DFC0CB54BB0",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x250:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "AEA076E5-D554-4570-B5E3-FE78CEC024B4",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x260:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "08393A13-D68E-4042-B223-EF80E581EEBC",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x270_kbl:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "48C5691D-3050-4436-B5E6-2D0D2FBF8A10",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_x270_skl:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "014780DC-38B1-45B0-A94C-85B80C784758",
              "vulnerable": false
            },
            {
              "criteria": "cpe:2.3:h:lenovo:thinkpad_yoga_11e:-:*:*:*:*:*:*:*",
              "matchCriteriaId": "F6C2E66F-B45C-4850-8C19-2AD84939173C",
              "vulnerable": false
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ],
      "operator": "AND"
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges."
    },
    {
      "lang": "es",
      "value": "Se ha identificado una vulnerabilidad de escalado de privilegios en las versiones anteriores a la 6.0.1.8224 del controlador de audio Realtek en productos Lenovo ThinkPad. Un atacante con privilegios locales podr\u00eda ejecutar c\u00f3digo con privilegios administrativos."
    }
  ],
  "id": "CVE-2017-3767",
  "lastModified": "2024-11-21T03:26:05.980",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "LOCAL",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 7.2,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "LOCAL",
          "availabilityImpact": "HIGH",
          "baseScore": 7.8,
          "baseSeverity": "HIGH",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "LOW",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 1.8,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-11-13T16:29:00.293",
  "references": [
    {
      "source": "psirt@lenovo.com",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Issue Tracking",
        "Third Party Advisory"
      ],
      "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
    }
  ],
  "sourceIdentifier": "psirt@lenovo.com",
  "vulnStatus": "Modified",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "NVD-CWE-noinfo"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2017-3767

Vulnerability from gsd

Modified

2023-12-13 01:21

Details

Aliases

CVE-2017-3767

Aliases

CVE-2017-3767

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2017-3767",
    "description": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.",
    "id": "GSD-2017-3767"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2017-3767"
      ],
      "details": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges.",
      "id": "GSD-2017-3767",
      "modified": "2023-12-13T01:21:16.476757Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@lenovo.com",
        "DATE_PUBLIC": "2017-11-09T00:00:00",
        "ID": "CVE-2017-3767",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Realtek Audio Driver",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Earlier than 6.0.1.8224"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "Lenovo Group Ltd."
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "Local priviledge escalation"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "https://support.lenovo.com/us/en/product_security/LEN-15759",
            "refsource": "CONFIRM",
            "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:o:realtek:audio_driver_firmware:*:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "versionEndExcluding": "6.0.1.8224",
                    "vulnerable": true
                  }
                ],
                "operator": "OR"
              },
              {
                "children": [],
                "cpe_match": [
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_10:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_11e:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_s1:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_s1_yoga:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_s1_yoga_12:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t440:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t560:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t570:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_w540:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_w541:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_w550s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_yoga_11e:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_s2:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_p50s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_p70:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t440s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t450s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t470p:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t540p:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x1_carbon:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x1_tablet:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x270_skl:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_13:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_l450:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_p51s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_p71:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t440p:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t450:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t470s_skl:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t550:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x1c:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x1_yoga:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x270_kbl:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_l460:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_l470_kbl:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_l470_skl:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_l560:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_p50:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t460:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t460p:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t460s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_t470:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x240:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x240s:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x250:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  },
                  {
                    "cpe23Uri": "cpe:2.3:h:lenovo:thinkpad_x260:-:*:*:*:*:*:*:*",
                    "cpe_name": [],
                    "vulnerable": false
                  }
                ],
                "operator": "OR"
              }
            ],
            "cpe_match": [],
            "operator": "AND"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@lenovo.com",
          "ID": "CVE-2017-3767"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A local privilege escalation vulnerability was identified in the Realtek audio driver versions prior to 6.0.1.8224 in some Lenovo ThinkPad products. An attacker with local privileges could execute code with administrative privileges."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "NVD-CWE-noinfo"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://support.lenovo.com/us/en/product_security/LEN-15759",
              "refsource": "CONFIRM",
              "tags": [
                "Issue Tracking",
                "Third Party Advisory"
              ],
              "url": "https://support.lenovo.com/us/en/product_security/LEN-15759"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "LOCAL",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 7.2,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "LOCAL",
            "availabilityImpact": "HIGH",
            "baseScore": 7.8,
            "baseSeverity": "HIGH",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "LOW",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 1.8,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2019-10-03T00:03Z",
      "publishedDate": "2017-11-13T16:29Z"
    }
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

cve-2017-3767

Vulnerability from cvelistv5

ghsa-wx9c-8pc3-wpmm

Vulnerability from github

var-201711-0398

Vulnerability from variot

fkie_cve-2017-3767

Vulnerability from fkie_nvd

gsd-2017-3767

Vulnerability from gsd

Tags

Sightings

Nomenclature