CVE-2017-2240
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-2240
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Directory traversal vulnerability in AssetView for MacOS Ver.9.2.0 and earlier versions allows remote attackers to read arbitrary files via "File Transfer Web Service".
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Hommock AssetView for MacOS 路径遍历漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Hommock AssetView for MacOS是日本Hommock公司的一款基于MacOS平台的IT资产和网络拓扑管理系统。该系统可以管理各种IT资产信息和网络拓扑信息,并定时收集库存信息。 基于MacOS平台的Hommock AssetView 9.2.0及之前的版本中存在目录遍历漏洞。远程攻击者可借助‘File Transfer Web Service’利用该漏洞读取任意文件。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Hammock Corporation | AssetView for MacOS | Ver.9.2.0 and earlier versions | - |
II. Public POCs for CVE-2017-2240
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-2240
请登录查看更多情报信息。
- 🔗 http://jvn.jp/en/vu/JVNVU93377948/index.htmlx_refsource_MISC
- 🔗 https://www.hammock.jp/assetview/info/170714.htmlx_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2017-2240
IV. Related Vulnerabilities
V. Comments for CVE-2017-2240
No comments yet