CVE-2017-7977
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2017-7977
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
The Screensavercc component in eLux RP before 5.5.0 allows attackers to bypass intended configuration restrictions and execute arbitrary commands with root privileges by inserting commands in a local configuration dialog in the control panel.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Unicon Software eLux RP Screensavercc组件安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Unicon Software eLux RP是德国Unicon Software公司的一款专用于精简型客户机设备的操作系统。Screensavercc component是其中的一个屏幕保护组件。 Unicon Software eLux RP 5.5.0之前的版本中的Screensavercc组件存在安全漏洞。攻击者可通过向控制面板中的本地配置对话框注入命令利用该漏洞绕过配置限制,执行任意命令。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2017-7977
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2017-7977
Please Login to view more intelligence information
- https://www.myelux.com/cvesingle.htm?cve_id=CVE-2017-7977x_refsource_CONFIRM
- https://nvd.nist.gov/vuln/detail/CVE-2017-7977
Same Patch Batch · n/a · 2017-07-19 · 21 CVEs total
| CVE-2017-11441 | cPanel 跨站脚本漏洞 | |
| CVE-2017-9245 | Google News and Weather application for Android 安全漏洞 | |
| CVE-2017-11456 | Geneko GWR路由器路径遍历漏洞 | |
| CVE-2017-11450 | ImageMagick 安全漏洞 | |
| CVE-2017-11449 | ImageMagick 安全漏洞 | |
| CVE-2017-11448 | ImageMagick 信息泄露漏洞 | |
| CVE-2017-11447 | ImageMagick 资源管理错误漏洞 | |
| CVE-2017-11446 | ImageMagick 安全漏洞 | |
| CVE-2017-11445 | Subrion CMS SQL注入漏洞 | |
| CVE-2017-11444 | Subrion CMS SQL注入漏洞 | |
| CVE-2017-11464 | GNOME librsvg 安全漏洞 | |
| CVE-2017-11440 | Sitecore 路径遍历漏洞 | |
| CVE-2017-11439 | Sitecore 跨站脚本漏洞 | |
| CVE-2017-11436 | D-Link DIR-615 安全漏洞 | |
| CVE-2017-11435 | Humax Wi-Fi Router HG100R 信息泄露漏洞 | |
| CVE-2017-10801 | phpSocial 跨站脚本漏洞 | |
| CVE-2017-9764 | MetInfo 跨站脚本漏洞 | |
| CVE-2016-7509 | GLPI 跨站脚本漏洞 | |
| CVE-2016-7507 | GLPI 跨站请求伪造漏洞 | |
| CVE-2017-11465 | Ruby UTF-8解析器安全漏洞 |
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2017-7977
No comments yet