Sign-up

ID

VAR-201708-1453


CVE

CVE-2017-7278


TITLE

ASSA ABLOY APTUS Styra Porttelefonkort 4400 Vulnerability in

Trust: 0.8

sources: JVNDB: JVNDB-2017-007245

DESCRIPTION

Unspecified vulnerability in ASSA ABLOY APTUS Styra Porttelefonkort 4400 before A2 has unknown impact and attack vectors. ASSA ABLOY APTUS Styra Porttelefonkort 4400 Has unspecified vulnerabilities.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. ASSA ABLOY APTUS Styra Porttelefonkort is a door lock unit communication card product of ASSA ABLOY Group in Sweden. A security vulnerability exists in ASSA ABLOY APTUS Styra Porttelefonkort. Currently there is no information about this vulnerability, please keep an eye on CNNVD or vendor announcements

Trust: 1.71

sources: NVD: CVE-2017-7278 // JVNDB: JVNDB-2017-007245 // VULHUB: VHN-115481

AFFECTED PRODUCTS

vendor:aptusmodel:styra porttelefonkort 4400scope:eqversion:a1

Trust: 1.6

vendor:aptusmodel:styra porttelefonkort 4400scope:ltversion:a2

Trust: 0.8

sources: JVNDB: JVNDB-2017-007245 // CNNVD: CNNVD-201703-1221 // NVD: CVE-2017-7278

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-7278
value: CRITICAL

Trust: 1.0

NVD: CVE-2017-7278
value: CRITICAL

Trust: 0.8

CNNVD: CNNVD-201703-1221
value: CRITICAL

Trust: 0.6

VULHUB: VHN-115481
value: HIGH

Trust: 0.1

nvd@nist.gov: CVE-2017-7278
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

VULHUB: VHN-115481
severity: HIGH
baseScore: 10.0
vectorString: AV:N/AC:L/AU:N/C:C/I:C/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.1

nvd@nist.gov: CVE-2017-7278
baseSeverity: CRITICAL
baseScore: 9.8
vectorString: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector: NETWORK
attackComplexity: LOW
privilegesRequired: NONE
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 3.9
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: VULHUB: VHN-115481 // JVNDB: JVNDB-2017-007245 // CNNVD: CNNVD-201703-1221 // NVD: CVE-2017-7278

PROBLEMTYPE DATA

problemtype:NVD-CWE-noinfo

Trust: 1.0

sources: NVD: CVE-2017-7278

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201703-1221

TYPE

lack of information

Trust: 0.6

sources: CNNVD: CNNVD-201703-1221

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2017-007245

PATCH
title:Security updateurl:http://www.aptus.se/sv/site/aptusse/support/sakerhetsuppdatering/
Trust: 0.8
sources:
            
            
            JVNDB: JVNDB-2017-007245

EXTERNAL IDS
db:NVDid:CVE-2017-7278
Trust: 2.5
db:JVNDBid:JVNDB-2017-007245
Trust: 0.8
db:CNNVDid:CNNVD-201703-1221
Trust: 0.7
db:VULHUBid:VHN-115481
Trust: 0.1
sources:
            
            
            VULHUB: VHN-115481 // 
            
            
            
            JVNDB: JVNDB-2017-007245 // 
            
            
            
            CNNVD: CNNVD-201703-1221 // 
            
            
            
            NVD: CVE-2017-7278

REFERENCES
url:https://www.aptus.se/sv/site/aptusse/support/sakerhetsuppdatering/
Trust: 1.7
url:http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-7278
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-7278
Trust: 0.8
sources:
            
            
            VULHUB: VHN-115481 // 
            
            
            
            JVNDB: JVNDB-2017-007245 // 
            
            
            
            CNNVD: CNNVD-201703-1221 // 
            
            
            
            NVD: CVE-2017-7278

SOURCES
db:VULHUBid:VHN-115481
db:JVNDBid:JVNDB-2017-007245
db:CNNVDid:CNNVD-201703-1221
db:NVDid:CVE-2017-7278

LAST UPDATE DATE
2025-04-20T23:34:19.004000+00:00

SOURCES UPDATE DATE
db:VULHUBid:VHN-115481date:2017-08-25T00:00:00
db:JVNDBid:JVNDB-2017-007245date:2017-09-14T00:00:00
db:CNNVDid:CNNVD-201703-1221date:2017-08-23T00:00:00
db:NVDid:CVE-2017-7278date:2025-04-20T01:37:25.860

SOURCES RELEASE DATE
db:VULHUBid:VHN-115481date:2017-08-18T00:00:00
db:JVNDBid:JVNDB-2017-007245date:2017-09-14T00:00:00
db:CNNVDid:CNNVD-201703-1221date:2017-03-28T00:00:00
db:NVDid:CVE-2017-7278date:2017-08-18T14:29:00.767