Vulnerability Description
The Leostream Agent before Build 7.0.1.0 when used with Leostream Connection Broker 8.2.72 or earlier allows remote attackers to modify registry keys via the Leostream Agent API.
CVSS Score
7.5
HIGH
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Leostream | Agent | < 7.0.1.0 |
| Leostream | Connection Broker | <= 8.2.72 |
References
- https://leostream.kayako.com/Knowledgebase/Article/View/85/52/leostream-agent-seVendor Advisory
- https://leostream.kayako.com/Knowledgebase/Article/View/85/52/leostream-agent-seVendor Advisory
FAQ
What is CVE-2018-18817?
CVE-2018-18817 is a vulnerability with a CVSS score of 7.5 (HIGH). The Leostream Agent before Build 7.0.1.0 when used with Leostream Connection Broker 8.2.72 or earlier allows remote attackers to modify registry keys via the Leostream Agent API.
How severe is CVE-2018-18817?
CVE-2018-18817 has been rated HIGH with a CVSS base score of 7.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2018-18817?
Check the references section above for vendor advisories and patch information. Affected products include: Leostream Agent, Leostream Connection Broker.