CVE-2017-8087
low-risk
Published 2019-10-22
Information Leakage in PPPoE Packet Padding in AVM Fritz!Box 7490 with Firmware versions Fritz!OS 6.80 and 6.83 allows physically proximate attackers to view slices of previously transmitted packets or portions of memory via via unspecified vectors.
Do I need to act?
-
0.15% chance of exploitation
EPSS score — low exploit probability
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
2
CVSS 2.4/10
Low
PHYSICAL
/ LOW complexity
Affected Products (2)
Fritz\!Os
Fritz\!Os
Affected Vendors
References (6)
Broken Link
http://avm.com
Product
http://fritzbox.com
Mailing List
http://seclists.org/fulldisclosure/2019/Oct/36
Broken Link
http://avm.com
Product
http://fritzbox.com
Mailing List
http://seclists.org/fulldisclosure/2019/Oct/36
18
/ 100
low-risk
Severity
10/34 · Low
Exploitability
1/34 · Minimal
Exposure
7/34 · Low