Sign-up

ID

VAR-201708-0960


CVE

CVE-2017-5695


TITLE

plural Intel Input validation vulnerability in firmware

Trust: 0.8

sources: JVNDB: JVNDB-2017-007276

DESCRIPTION

Data corruption vulnerability in firmware in Intel Solid-State Drive Consumer, Professional, Embedded, Data Center affected firmware versions LSBG200, LSF031C, LSF036C, LBF010C, LSBG100, LSF031C, LSF036C, LBF010C, LSF031P, LSF036P, LBF010P, LSF031P, LSF036P, LBF010P, LSMG200, LSF031E, LSF036E, LSMG100, LSF031E, LSF036E, LSDG200, LSF031D, LSF036D allows local users to cause a denial of service via unspecified vectors. plural Intel The firmware contains an input validation vulnerability.Denial of service (DoS) May be in a state. Intel SSD540sSeries and so on are all different series of SSD products from Intel Corporation of the United States. There are security vulnerabilities in several Intel products

Trust: 2.25

sources: NVD: CVE-2017-5695 // JVNDB: JVNDB-2017-007276 // CNVD: CNVD-2017-29224 // VULHUB: VHN-113898

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2017-29224

AFFECTED PRODUCTS

vendor:intelmodel:ssd 540s series m.2scope:eqversion:lbf010c

Trust: 1.8

vendor:intelmodel:ssd 540s series m.2scope:eqversion:lsbg100

Trust: 1.8

vendor:intelmodel:ssd 540s series m.2scope:eqversion:lsf031c

Trust: 1.8

vendor:intelmodel:ssd 540s series m.2scope:eqversion:lsf036c

Trust: 1.8

vendor:intelmodel:ssd e 5400s m.2scope:eqversion:lsmg100

Trust: 1.6

vendor:intelmodel:ssd dc s3100scope:eqversion:lsdg200

Trust: 1.6

vendor:intelmodel:ssd e 5400s m.2scope:eqversion:lsf036e

Trust: 1.6

vendor:intelmodel:ssd dc s3100scope:eqversion:lsf036d

Trust: 1.6

vendor:intelmodel:ssd e 5400s 2.5\"scope:eqversion:lsf031e

Trust: 1.6

vendor:intelmodel:ssd e 5400s m.2scope:eqversion:lsf031e

Trust: 1.6

vendor:intelmodel:ssd dc s3100scope:eqversion:lsf031d

Trust: 1.6

vendor:intelmodel:ssd 540s 2.5\"scope:eqversion:lsf036c

Trust: 1.0

vendor:intelmodel:ssd 540s 2.5\"scope:eqversion:lsf031c

Trust: 1.0

vendor:intelmodel:ssd pro 5400s m.2scope:eqversion:lsf031p

Trust: 1.0

vendor:intelmodel:ssd pro 5400s 2.5\"scope:eqversion:lsf036p

Trust: 1.0

vendor:intelmodel:ssd e 5400s 2.5\"scope:eqversion:lsmg200

Trust: 1.0

vendor:intelmodel:ssd 540s 2.5\"scope:eqversion:lsbg200

Trust: 1.0

vendor:intelmodel:ssd pro 5400s m.2scope:eqversion:lsf036p

Trust: 1.0

vendor:intelmodel:ssd e 5400s 2.5\"scope:eqversion:lsf036e

Trust: 1.0

vendor:intelmodel:ssd pro 5400s 2.5\"scope:eqversion:lbf010p

Trust: 1.0

vendor:intelmodel:ssd pro 5400s 2.5\"scope:eqversion:lsf031p

Trust: 1.0

vendor:intelmodel:ssd pro 5400s m.2scope:eqversion:lbf010p

Trust: 1.0

vendor:intelmodel:ssd 540s series 2.5"scope:eqversion:lbf010c

Trust: 0.8

vendor:intelmodel:ssd 540s series 2.5"scope:eqversion:lsbg200

Trust: 0.8

vendor:intelmodel:ssd 540s series 2.5"scope:eqversion:lsf031c

Trust: 0.8

vendor:intelmodel:ssd 540s series 2.5"scope:eqversion:lsf036c

Trust: 0.8

vendor:intelmodel:ssd dc s3100 seriesscope:eqversion:lsdg200

Trust: 0.8

vendor:intelmodel:ssd dc s3100 seriesscope:eqversion:lsf031d

Trust: 0.8

vendor:intelmodel:ssd dc s3100 seriesscope:eqversion:lsf036d

Trust: 0.8

vendor:intelmodel:ssd e 5400s series 2.5"scope:eqversion:lsf031e

Trust: 0.8

vendor:intelmodel:ssd e 5400s series 2.5"scope:eqversion:lsf036e

Trust: 0.8

vendor:intelmodel:ssd e 5400s series 2.5"scope:eqversion:lsmg200

Trust: 0.8

vendor:intelmodel:ssd e 5400s series m.2scope:eqversion:lsf031e

Trust: 0.8

vendor:intelmodel:ssd e 5400s series m.2scope:eqversion:lsf036e

Trust: 0.8

vendor:intelmodel:ssd e 5400s series m.2scope:eqversion:lsmg100

Trust: 0.8

vendor:intelmodel:ssd pro 5400s series 2.5"scope:eqversion:lbf010p

Trust: 0.8

vendor:intelmodel:ssd pro 5400s series 2.5"scope:eqversion:lsf031p

Trust: 0.8

vendor:intelmodel:ssd pro 5400s series 2.5"scope:eqversion:lsf036p

Trust: 0.8

vendor:intelmodel:ssd pro 5400s series m.2scope:eqversion:lbf010p

Trust: 0.8

vendor:intelmodel:ssd pro 5400s series m.2scope:eqversion:lsf031p

Trust: 0.8

vendor:intelmodel:ssd pro 5400s series m.2scope:eqversion:lsf036p

Trust: 0.8

vendor:intelmodel:ssd 540s series 2.5" lsbg200scope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series 2.5" lsf031cscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series 2.5" lsf036cscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series 2.5" lbf010cscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series m.2 lsbg100scope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series m.2 lsf031cscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series m.2 lsf036cscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd 540s series m.2 lbf010cscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series 2.5" lsf031pscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series 2.5" lsf036pscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series 2.5" lbf010pscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd pro 5400s series m.2 lbf010pscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series 2.5" lsmg200scope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series 2.5" lsf031escope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series 2.5" lsf036escope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series m.2 lsmg100scope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series m.2 lsf031escope: - version: -

Trust: 0.6

vendor:intelmodel:ssd e 5400s series m.2 lsf036escope: - version: -

Trust: 0.6

vendor:intelmodel:ssd dc s3100 series lsdg200scope: - version: -

Trust: 0.6

vendor:intelmodel:ssd dc s3100 series lsf031dscope: - version: -

Trust: 0.6

vendor:intelmodel:ssd dc s3100 series lsf036dscope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2017-29224 // JVNDB: JVNDB-2017-007276 // CNNVD: CNNVD-201708-444 // NVD: CVE-2017-5695

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-5695
value: MEDIUM

Trust: 1.0

NVD: CVE-2017-5695
value: MEDIUM

Trust: 0.8

CNVD: CNVD-2017-29224
value: LOW

Trust: 0.6

CNNVD: CNNVD-201708-444
value: MEDIUM

Trust: 0.6

VULHUB: VHN-113898
value: LOW

Trust: 0.1

nvd@nist.gov: CVE-2017-5695
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2017-29224
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

VULHUB: VHN-113898
severity: LOW
baseScore: 2.1
vectorString: AV:L/AC:L/AU:N/C:N/I:N/A:P
accessVector: LOCAL
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: PARTIAL
exploitabilityScore: 3.9
impactScore: 2.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-5695
baseSeverity: MEDIUM
baseScore: 4.6
vectorString: CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector: PHYSICAL
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: HIGH
exploitabilityScore: 0.9
impactScore: 3.6
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2017-29224 // VULHUB: VHN-113898 // JVNDB: JVNDB-2017-007276 // CNNVD: CNNVD-201708-444 // NVD: CVE-2017-5695

PROBLEMTYPE DATA

problemtype:CWE-20

Trust: 1.9

sources: VULHUB: VHN-113898 // JVNDB: JVNDB-2017-007276 // NVD: CVE-2017-5695

THREAT TYPE

local

Trust: 0.6

sources: CNNVD: CNNVD-201708-444

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-201708-444

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-007276

PATCH
title:INTEL-SA-00079url:https://security-center.intel.com/advisory.aspx?intelid=INTEL-SA-00079&languageid=en-fr
Trust: 0.8
title:Patches for multiple Intel product denial of service vulnerabilitiesurl:https://www.cnvd.org.cn/patchInfo/show/103297
Trust: 0.6
title:Multiple Intel Product security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=73905
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2017-29224 // 
            
            
            
            JVNDB: JVNDB-2017-007276 // 
            
            
            
            CNNVD: CNNVD-201708-444

EXTERNAL IDS
db:NVDid:CVE-2017-5695
Trust: 3.1
db:LENOVOid:LEN-26626
Trust: 1.7
db:JVNDBid:JVNDB-2017-007276
Trust: 0.8
db:CNNVDid:CNNVD-201708-444
Trust: 0.7
db:CNVDid:CNVD-2017-29224
Trust: 0.6
db:VULHUBid:VHN-113898
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-29224 // 
            
            
            
            VULHUB: VHN-113898 // 
            
            
            
            JVNDB: JVNDB-2017-007276 // 
            
            
            
            CNNVD: CNNVD-201708-444 // 
            
            
            
            NVD: CVE-2017-5695

REFERENCES
url:https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00079&languageid=en-fr
Trust: 2.2
url:http://support.lenovo.com/us/en/solutions/len-26626
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-5695
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-5695
Trust: 0.8
url:https://security-center.intel.com/advisory.aspx?intelid=intel-sa-00079&languageid=en-fr
Trust: 0.1
sources:
            
            
            CNVD: CNVD-2017-29224 // 
            
            
            
            VULHUB: VHN-113898 // 
            
            
            
            JVNDB: JVNDB-2017-007276 // 
            
            
            
            CNNVD: CNNVD-201708-444 // 
            
            
            
            NVD: CVE-2017-5695

SOURCES
db:CNVDid:CNVD-2017-29224
db:VULHUBid:VHN-113898
db:JVNDBid:JVNDB-2017-007276
db:CNNVDid:CNNVD-201708-444
db:NVDid:CVE-2017-5695

LAST UPDATE DATE
2025-04-20T23:32:06.207000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2017-29224date:2017-10-09T00:00:00
db:VULHUBid:VHN-113898date:2019-04-18T00:00:00
db:JVNDBid:JVNDB-2017-007276date:2017-09-15T00:00:00
db:CNNVDid:CNNVD-201708-444date:2019-04-19T00:00:00
db:NVDid:CVE-2017-5695date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:CNVDid:CNVD-2017-29224date:2017-10-09T00:00:00
db:VULHUBid:VHN-113898date:2017-08-09T00:00:00
db:JVNDBid:JVNDB-2017-007276date:2017-09-15T00:00:00
db:CNNVDid:CNNVD-201708-444date:2017-08-17T00:00:00
db:NVDid:CVE-2017-5695date:2017-08-09T14:29:00.263