Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-qvsc-tr3r-9fc9
Vulnerability ID VCID-qvsc-tr3r-9fc9
Aliases CVE-2017-11333
Summary security update
Status Published
Exploitability 2.0
Weighted Severity 9.0
Risk 10.0
Affected and Fixed Packages Package Details
Weaknesses (1)
CWE-400 Uncontrolled Resource Consumption
System Score Found at
cvssv3 3.3 https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11333.json
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
epss 0.02385 https://api.first.org/data/v1/epss?cve=CVE-2017-11333
cvssv3 3.3 https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
archlinux Critical https://security.archlinux.org/AVG-367
Reference id Reference type URL
https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11333.json
https://api.first.org/data/v1/epss?cve=CVE-2017-11333
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-11333
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14632
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-14633
https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
1480643 https://bugzilla.redhat.com/show_bug.cgi?id=1480643
870341 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=870341
ASA-201803-12 https://security.archlinux.org/ASA-201803-12
AVG-367 https://security.archlinux.org/AVG-367
CVE-2017-11735;CVE-2017-11333 Exploit https://gitlab.com/exploit-database/exploitdb/-/blob/main/exploits/linux/dos/42399.txt
Data source Exploit-DB
Date added July 31, 2017
Description libvorbis 1.3.5 - Multiple Vulnerabilities
Ransomware campaign use Unknown
Source publication date July 31, 2017
Exploit type dos
Platform linux
Source update date July 31, 2017
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2017-11333.json
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Vector: CVSS:3.0/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:L Found at https://ftp.suse.com/pub/projects/security/yaml/suse-cvss-scores.yaml
Attack Vector (AV) Attack Complexity (AC) Privileges Required (PR) User Interaction (UI) Scope (S) Confidentiality Impact (C) Integrity Impact (I) Availability Impact (A)

network

adjacent_network

local

physical

low

high

none

low

high

none

required

unchanged

changed

high

low

none

high

low

none

high

low

none
Exploit Prediction Scoring System (EPSS)
Percentile 0.84929
EPSS Score 0.02385
Published At April 1, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-04-01T13:19:10.190789+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-stretch.xml.bz2 38.0.0