CVE-2017-1000486
CVSS v3.0
9.8 (Critical)
CVSS v2.0
7.5 (High)
EPSS
97.01 % (100th)
Affected Products
1
Advisories
2
Primetek Primefaces 5.x is vulnerable to a weak encryption flaw resulting in remote code execution
Weaknesses
- CWE-326
- Inadequate Encryption Strength
- CVE Status
- PUBLISHED
- CNA
- MITRE
- Published Date
-
2018-01-03 20:29:00
(6 years ago) - Updated Date
-
2018-01-24 14:05:05
(6 years ago)
Primetek Primefaces Remote Code Execution Vulnerability (CISA - Known Exploited Vulnerabilities Catalog)
- Description
- Primetek Primefaces is vulnerable to a weak encryption flaw resulting in remote code execution
- Required Action
- Apply updates per vendor instructions.
- Known to be Used in Ransomware Campaigns
- Unknown
- Notes
- https://nvd.nist.gov/vuln/detail/CVE-2017-1000486
- Vendor
- Primetek
- Product
- Primefaces Application
- In CISA Catalog from
-
2022-01-10
(2 years ago) - Due Date
-
2022-07-10
(2 years ago)
Affected Products
Loading...
Loading...
Loading...
Configuration #1
|
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...
Loading...