CVE-2017-7307

CVE Database · CVE-2017-7307

CVE-2017-7307

· N/AModified

CVSS v3.1

N/A

EPSS

0.33%

Published

Apr 4, 2017

Modified

May 12, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Riverbed RiOS before 9.0.1 does not properly restrict shell access in single-user mode, which makes it easier for physically proximate attackers to obtain root privileges and access decrypted data by replacing the /opt/tms/bin/cli file.

Weaknesses (CWE)

CWE-732

Affected Products (1)

riverbed · riosvulnerable

References (4)

http://seclists.org/fulldisclosure/2017/Feb/25

Mailing ListThird Party Advisory

https://supportkb.riverbed.com/support/index?page=content&id=S30065

MitigationVendor Advisory

http://seclists.org/fulldisclosure/2017/Feb/25

Mailing ListThird Party Advisory

https://supportkb.riverbed.com/support/index?page=content&id=S30065

MitigationVendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs