1. Home
  2. CVE Database
  3. CVE-2017-10890
MEDIUM · 4.6

CVE-2017-10890

Session management issue in RX-V200 firmware versions prior to 09.87.17.09, RX-V100 firmware versions prior to 03.29.17.09, RX-CLV1-P firmware versions prior to 79.17.17.09, RX-CLV2-B firmware version...

Vulnerability Description

Session management issue in RX-V200 firmware versions prior to 09.87.17.09, RX-V100 firmware versions prior to 03.29.17.09, RX-CLV1-P firmware versions prior to 79.17.17.09, RX-CLV2-B firmware versions prior to 89.07.17.09, RX-CLV3-N firmware versions prior to 91.09.17.10 allows an attacker on the same LAN to perform arbitrary operations or access information via unspecified vectors.

CVSS Score

4.6

MEDIUM

CVSS:3.0/AV:A/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:N
Attack Vector
ADJACENT_NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
REQUIRED
Scope
UNCHANGED
Confidentiality
LOW
Integrity
LOW
Availability
NONE

Affected Products

VendorProductVersions
SharpRx-V200 Firmware< 09.87.17.09
SharpRx-V200-
SharpRx-V100 Firmware< 03.29.17.09
SharpRx-V100-
SharpRx-Clv1-P Firmware< 79.17.17.09
SharpRx-Clv1-P-
SharpRx-Clv2-B Firmware< 89.07.17.09
SharpRx-Clv2-B-
SharpRx-Clv3-N Firmware< 91.09.17.10
SharpRx-Clv3-N-

Related Weaknesses (CWE)

CWE-384

References

FAQ

What is CVE-2017-10890?

CVE-2017-10890 is a vulnerability with a CVSS score of 4.6 (MEDIUM). Session management issue in RX-V200 firmware versions prior to 09.87.17.09, RX-V100 firmware versions prior to 03.29.17.09, RX-CLV1-P firmware versions prior to 79.17.17.09, RX-CLV2-B firmware version...

How severe is CVE-2017-10890?

CVE-2017-10890 has been rated MEDIUM with a CVSS base score of 4.6/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-10890?

Check the references section above for vendor advisories and patch information. Affected products include: Sharp Rx-V200 Firmware, Sharp Rx-V200, Sharp Rx-V100 Firmware, Sharp Rx-V100, Sharp Rx-Clv1-P Firmware.