Search for vulnerabilities
Vulnerability details: VCID-8xnj-pzzj-aqeg
Vulnerability ID VCID-8xnj-pzzj-aqeg
Aliases CVE-2017-9098
Summary
Status Published
Exploitability 0.5
Weighted Severity 8.0
Risk 4.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-456 Missing Initialization of a Variable
System Score Found at
cvssv3 5.1 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9098.json
epss 0.01258 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.01258 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.01258 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
epss 0.0146 https://api.first.org/data/v1/epss?cve=CVE-2017-9098
cvssv2 4.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
cvssv3 5.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
archlinux High https://security.archlinux.org/AVG-939
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9098.json
https://api.first.org/data/v1/epss?cve=CVE-2017-9098
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7606
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7619
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7941
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-7943
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8343
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8344
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8345
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8346
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8347
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8348
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8349
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8350
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8351
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8352
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8353
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8354
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8355
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8356
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8357
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8765
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-8830
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9098
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9141
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9142
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9143
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-9144
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1453124 https://bugzilla.redhat.com/show_bug.cgi?id=1453124
862967 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=862967
AVG-939 https://security.archlinux.org/AVG-939
USN-3302-1 https://usn.ubuntu.com/3302-1/
No exploits are available.
Vector: CVSS:3.0/AV:L/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-9098.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: AV:N/AC:M/Au:N/C:P/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Exploitability (E) Access Vector (AV) Access Complexity (AC) Authentication (Au) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

high

functional

unproven

proof_of_concept

not_defined

local

adjacent_network

network

high

medium

low

multiple

single

none

none

partial

complete

none

partial

complete

none

partial

complete
Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.78648
EPSS Score 0.01258
Published At Aug. 1, 2025, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2025-07-31T08:34:41.002066+00:00 Ubuntu USN Importer Import https://usn.ubuntu.com/3302-1/ 37.0.0