Vulnerability Name:

CVE-2017-3070 (CCN-125624)

Assigned:2016-12-02
Published:2017-05-09
Updated:2023-01-27
Summary:
CVSS v3 Severity:8.8 High (CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
8.8 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H)
7.7 High (CCN Temporal CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): Required
Scope:Scope (S): Unchanged
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:9.3 High (CVSS v2 Vector: AV:N/AC:M/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Medium
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
9.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Athentication (Au): Single_Instance
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2017-3070

Source: CCN
Type: BID-98349
Adobe Flash Player APSB17-15 Multiple Memory Corruption Vulnerabilities

Source: psirt@adobe.com
Type: Broken Link, Third Party Advisory, VDB Entry
psirt@adobe.com

Source: psirt@adobe.com
Type: Broken Link, Third Party Advisory, VDB Entry
psirt@adobe.com

Source: psirt@adobe.com
Type: Third Party Advisory
psirt@adobe.com

Source: XF
Type: UNKNOWN
adobe-flash-cve20173070-code-exec(125624)

Source: CCN
Type: Adobe Security Bulletin APSB17-15
Security updates available for Adobe Flash Player

Source: psirt@adobe.com
Type: Patch, Vendor Advisory
psirt@adobe.com

Source: psirt@adobe.com
Type: Third Party Advisory
psirt@adobe.com

Oval Definitions
Definition IDClassTitleLast Modified
oval:org.opensuse.security:def:20173070
V
CVE-2017-3070
2022-05-20
oval:org.opensuse.security:def:55962
P
Security update for postgresql10 (Important)
2021-10-20
oval:org.opensuse.security:def:47226
P
cpp48-4.8.5-30.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:47290
P
ipsec-tools-0.8.0-18.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:47321
P
libXrender1-0.9.8-7.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:47080
P
libsrtp1-1.5.2-2.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:47392
P
libplist3-1.12-19.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:47164
P
sysvinit-tools-2.88+-96.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:48030
P
grub2-2.02-12.15.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:48084
P
libXrender1-0.9.8-7.1 on GA media (Moderate)
2021-08-16
oval:org.opensuse.security:def:56036
P
Security update for webkit2gtk3 (Important)
2021-06-17
oval:org.opensuse.security:def:46496
P
libmodplug1-0.8.8.4-13.63 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11751
P
yast2-core-3.1.18-1.5 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:46628
P
clamav-0.98.7-13.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11797
P
emacs-24.3-16.32 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11721
P
strongswan-5.1.3-18.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:46719
P
libdcerpc-binding0-32bit-4.2.4-4.19 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11844
P
krb5-1.12.5-39.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:46866
P
wget-1.14-7.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11859
P
libXi6-1.7.4-9.2 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:12020
P
supportutils-3.0-85.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11878
P
libecpg6-9.4.9-14.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:12029
P
unixODBC-2.3.4-6.5 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11953
P
libtiff5-32bit-4.0.6-26.3 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:12042
P
xf86-video-intel-2.99.917.641_ge4ef6e9-12.3 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11978
P
openvpn-2.3.8-16.6.4 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:12680
P
pam_krb5-2.4.4-4.5 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:11729
P
telepathy-idle-0.2.0-1.62 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:12702
P
python-pyOpenSSL-16.0.0-4.6.1 on GA media (Moderate)
2021-06-08
oval:org.opensuse.security:def:54686
P
Security update for the Linux Kernel (Live Patch 36 for SLE 12 SP2) (Important)
2020-12-07
oval:org.opensuse.security:def:25243
P
Security update for java-1_8_0-ibm (Important)
2020-12-01
oval:org.opensuse.security:def:54567
P
libltdl7 on GA media (Moderate)
2020-12-01
oval:org.opensuse.security:def:46170
P
Security update for MozillaFirefox (Important)
2020-12-01
oval:org.opensuse.security:def:25098
P
Security update for python-numpy (Important)
2020-12-01
oval:org.opensuse.security:def:54008
P
libXtst6 on GA media (Moderate)
2020-12-01
oval:org.opensuse.security:def:25881
P
Security update for flash-player (Important)
2020-12-01
oval:org.opensuse.security:def:54605
P
libspice-client-glib-2_0-8 on GA media (Moderate)
2020-12-01
oval:org.opensuse.security:def:24486
P
Security update for libsolv, libzypp, zypper (Moderate)
2020-12-01
oval:org.opensuse.security:def:54293
P
libpcsclite1 on GA media (Moderate)
2020-12-01
oval:org.opensuse.security:def:25916
P
Security update for flash-player (Important)
2020-12-01
oval:org.opensuse.security:def:24549
P
Security update for xen (Important)
2020-12-01
oval:org.opensuse.security:def:53163
P
Security update for the Linux Kernel (Important)
2020-12-01
oval:org.opensuse.security:def:54401
P
wireshark on GA media (Moderate)
2020-12-01
oval:org.opensuse.security:def:24675
P
Security update for audiofile (Low)
2020-12-01
oval:org.opensuse.security:def:53185
P
Security update for qemu (Moderate)
2020-12-01
oval:org.opensuse.security:def:24476
P
Security update for webkit2gtk3 (Important)
2020-12-01
oval:org.opensuse.security:def:24756
P
Security update for tar (Moderate)
2020-12-01
oval:org.opensuse.security:def:53325
P
Security update for postgresql10 (Important)
2020-12-01
oval:org.opensuse.security:def:46171
P
Security update for ucode-intel (Important)
2020-12-01
oval:org.opensuse.security:def:24812
P
Security update for ImageMagick (Moderate)
2020-12-01
oval:org.opensuse.security:def:53563
P
Security update for Salt (Critical)
2020-12-01
oval:org.opensuse.security:def:46184
P
Security update for libsolv, libzypp, zypper (Moderate)
2020-12-01
oval:org.opensuse.security:def:25185
P
Security update for MozillaFirefox (Important)
2020-12-01
oval:org.opensuse.security:def:53162
P
Security update for kernel-source-rt (Important)
2020-12-01
oval:org.opensuse.security:def:24895
P
Security update for mariadb (Important)
2020-12-01
oval:org.opensuse.security:def:53736
P
Security update for webkit2gtk3 (Important)
2020-12-01
oval:org.opensuse.security:def:46304
P
Security update for the Linux Kernel (Live Patch 26 for SLE 12 SP3) (Important)
2020-12-01
oval:org.opensuse.security:def:25199
P
Security update for java-1_7_1-ibm (Important)
2020-12-01
oval:org.opensuse.security:def:54493
P
hardlink on GA media (Moderate)
2020-12-01
oval:org.opensuse.security:def:25045
P
Security update for libcaca (Moderate)
2020-12-01
oval:org.opensuse.security:def:53842
P
Security update for ffmpeg (Important)
2020-12-01
oval:org.opensuse.security:def:78670
P
Security update for flash-player (Important)
2017-05-10
oval:com.ubuntu.trusty:def:20173070000
V
CVE-2017-3070 on Ubuntu 14.04 LTS (trusty) - medium.
2017-05-09
oval:com.ubuntu.xenial:def:20173070000
V
CVE-2017-3070 on Ubuntu 16.04 LTS (xenial) - medium.
2017-05-09
oval:com.ubuntu.xenial:def:201730700000000
V
CVE-2017-3070 on Ubuntu 16.04 LTS (xenial) - medium.
2017-05-09
BACK