PT-2017-11756 · Broadcom · Bcm4355C0

Gal Beniamini

Publicado

2017-10-04

Atualizado

2019-03-08

CVE-2017-11122

CVSS v3.1

7.5

Alta

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Broadcom BCM4355C0 Wi-Fi chips version 9.44.78.27.0.1.56

Description The issue is related to insufficient length validation in ICMPv6 router advertisement offloading, which can lead to an information leak. An attacker can trigger this leak.

Recommendations For version 9.44.78.27.0.1.56, consider disabling ICMPv6 router advertisement offloading as a temporary workaround until a patch is available.

Exploit

Correção

Information Disclosure

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-200

Identificadores relacionados

CVE-2017-11122

Produtos afetados

Bcm4355C0

PT-2017-11756 · Broadcom · Bcm4355C0

CVE-2017-11122

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 8