What is the severity of CVE-2017-8012?

CVE-2017-8012 has been classified as a high severity vulnerability due to its potential to cause denial of service conditions.

How can I mitigate CVE-2017-8012 in my system?

Mitigation for CVE-2017-8012 involves restricting access to JMX endpoints and implementing proper network security measures.

Which software versions are affected by CVE-2017-8012?

CVE-2017-8012 affects Dell EMC ViPR SRM versions up to 4.0.2, as well as various EMC M&R and SAS Solution Packs.

What kind of attack does CVE-2017-8012 exploit?

CVE-2017-8012 can be exploited to launch a denial of service attack through the Java Management Extensions protocol.

Is CVE-2017-8012 a persistent threat?

CVE-2017-8012 can become a persistent threat if the vulnerability is not patched or mitigated, leading to ongoing service disruptions.

Vulnerability/
CVE-2017-8012

high

7.4

22/9/2017

5/8/2024

CVE-2017-8012

First published: Fri Sep 22 2017(Updated: )

In EMC ViPR SRM, Storage M&R, VNX M&R, and M&R (Watch4Net) for SAS Solution Packs, the Java Management Extensions (JMX) protocol used to communicate between components in the Alerting and/or Compliance components can be leveraged to create a denial of service (DoS) condition. Attackers with knowledge of JMX agent user credentials could potentially exploit this vulnerability to create arbitrary files on the affected system and create a DoS condition by leveraging inherent JMX protocol capabilities.

Credit: security_alert@emc.com

Affected Software	Affected Version	How to fix
Dell EMC M&R
Dell EMC VNX Monitoring And Reporting
Dell EMC ViPR SRM	<=4.0.2
Dell EMC VNX Monitoring And Reporting

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2017-8012?
CVE-2017-8012 has been classified as a high severity vulnerability due to its potential to cause denial of service conditions.
How can I mitigate CVE-2017-8012 in my system?
Mitigation for CVE-2017-8012 involves restricting access to JMX endpoints and implementing proper network security measures.
Which software versions are affected by CVE-2017-8012?
CVE-2017-8012 affects Dell EMC ViPR SRM versions up to 4.0.2, as well as various EMC M&R and SAS Solution Packs.
What kind of attack does CVE-2017-8012 exploit?
CVE-2017-8012 can be exploited to launch a denial of service attack through the Java Management Extensions protocol.
Is CVE-2017-8012 a persistent threat?
CVE-2017-8012 can become a persistent threat if the vulnerability is not patched or mitigated, leading to ongoing service disruptions.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/last-modified-date
agent/severity
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/dell
canonical/dell emc m&r
canonical/dell emc vnx monitoring and reporting
canonical/dell emc vipr srm
version/dell emc vipr srm/4.0.2

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.