CVE-2017-3222: CVE-2017-3222

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2017-3222

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Hard-coded credentials in AmosConnect 8 allow remote attackers to gain full administrative privileges, including the ability to execute commands on the Microsoft Windows host platform with SYSTEM privileges by abusing AmosConnect Task Manager.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

使用硬编码的凭证

Source: NVD (National Vulnerability Database)

Vulnerability Title

AmosConnect 8 安全漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

AmosConnect 8是一套邮件收发管理系统。该系统支持收发邮件、传真和电文等。 AmosConnect 8中存在安全漏洞，该漏洞源于程序使用了硬编码密码证书。远程攻击者可利用该漏洞获取管理员权限，包括在Microsoft Windows主机平台上以系统权限执行命令。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Inmarsat	AmosConnect	8.0, 8.0.1, 8.0.2, 8.2.0, 8.2.1, 8.2.2, 8.3.0, 8.3.1, 8.4.0, 8.4.0.1	-

II. Public POCs for CVE-2017-3222

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2017-3222

Please Login to view more intelligence information

🔗 http://www.inmarsat.com/news/inmarsat-response-to-ioactive-claims/x_refsource_MISC
🔗 https://twitter.com/mkolsek/status/923988845783322625x_refsource_MISC
🔗 http://www.securityfocus.com/bid/99899vdb-entryx_refsource_BID
🔗 https://www.kb.cert.org/vuls/id/586501third-party-advisoryx_refsource_CERT-VN
https://nvd.nist.gov/vuln/detail/CVE-2017-3222

IV. Related Vulnerabilities

Same product: AmosConnect

CVE-2017-3221
AmosConnect 8 SQL注入漏洞

Same vendor: Inmarsat

CVE-2017-3221
AmosConnect 8 SQL注入漏洞

Same weakness: CWE-798

V. Comments for CVE-2017-3222

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

I. Basic Information for CVE-2017-3222

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2017-3222

III. Intelligence Information for CVE-2017-3222

IV. Related Vulnerabilities

V. Comments for CVE-2017-3222

Leave a comment