← back
CVE-2017-7310

CVE-2017-7310

EPSS 53.7%
Vexday Risk Score
50Attention
SSVC decision (CISA)
Attend
PoC available → attend closely
Exploit maturity
Functional exploit
Automatable exploit available (Nuclei/Metasploit).
CVSS EPSS 53.7%KEV nãoPoC públicaNuclei Metasploit simPatch
Lifecycle
29 Mar 2017Metasploit module available
29 Mar 2017Public PoC
29 Mar 2017Published on NVD
Recommendation: Plan a near-term fix — a public PoC already exists.
A buffer overflow vulnerability in Import Command in SyncBreeze before 10.6, DiskSorter before 10.6, DiskBoss before 8.9, DiskPulse before 10.6, DiskSavvy before 10.6, DupScout before 10.6, and VX Search before 10.6 allows attackers to execute arbitrary code via a crafted XML file containing a long name attribute of a classify element.
Affected products
n/a · n/a
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.