Search criteria
2 vulnerabilities found for drm-1\/2 by mirion
VAR-201709-1106
Vulnerability from variot - Updated: 2023-12-18 12:44An Inadequate Encryption Strength issue was discovered in Mirion Technologies DMC 3000 Transmitter Module, iPam Transmitter f/DMC 2000, RDS-31 iTX and variants (including RSD31-AM Package), DRM-1/2 and variants (including Solar PWR Package), DRM and RDS Based Boundary Monitors, External Transmitters, Telepole II, and MESH Repeater (Telemetry Enabled Devices). Decryption of data is possible at the hardware level. plural Mirion Technologies The product contains a vulnerability related to cryptographic strength.Information may be obtained. Mirion Technologies provides a source of solutions for nuclear, military, radiation detection and monitoring. Mirion Technologies Telemetry Enabled Devices is a denial of service vulnerability that could be exploited by an attacker to transmit fraudulent data or perform denial of service. Successfully exploiting these issues may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. RSD31-AM Package), DRM-1/2 and variants (incl. Security vulnerabilities exist in several Mirion Technologies products
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201709-1106",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "drm-1\\/2",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "drm-2",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "dmc 3000 transmitter",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "ipam transmitter f\\/dmc 2000",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "wrm2",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "rds-31 itx",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "telepole 2",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "rds-31",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "dmc 3000 transmitter module",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "drm-1/2",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "ipam transmitter f/dmc 2000",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "mesh repeater",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "rds-31 itx",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "rsd31-am",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "telepole ii",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices dmc transmitter module",
"scope": "eq",
"trust": 0.6,
"vendor": "mirion",
"version": "3000"
},
{
"model": "telemetry enabled devices ipam transmitter f/dmc",
"scope": "eq",
"trust": 0.6,
"vendor": "mirion",
"version": "2000"
},
{
"model": "telemetry enabled devices rds-31 itx and variants",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices drm-1/2 and variants",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices drm and rds based boundary monitors",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices telepole ii",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices external transmitters",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices mesh repeater",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telepole ii",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "rds-31 itx",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "mesh repeater",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "ipam transmitter f/dmc",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "20000"
},
{
"model": "external transmitters",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "drm-1/2",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "drm and rds based boundary monitors",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "dmc transmitter module",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "30000"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "dmc 3000 transmitter",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "ipam transmitter f dmc 2000",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "rds 31 itx",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "drm 1 2",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "drm 2",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "rds 31",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "telepole 2",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "wrm2",
"version": null
}
],
"sources": [
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:dmc_3000_transmitter_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:dmc_3000_transmitter:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:ipam_transmitter_f\\/dmc_2000_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:ipam_transmitter_f\\/dmc_2000:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:rds-31_itx_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:rds-31_itx:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:drm-1\\/2_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:drm-1\\/2:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:drm-2_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:drm-2:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:rds-31_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:rds-31:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:telepole_2_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:telepole_2:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion:wrm2_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion:wrm2:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2017-9645"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ruben Santamarta of IOActive",
"sources": [
{
"db": "BID",
"id": "100001"
}
],
"trust": 0.3
},
"cve": "CVE-2017-9645",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 6.5,
"impactScore": 2.9,
"integrityImpact": "NONE",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "LOW",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Low",
"accessVector": "Adjacent Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 3.3,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2017-9645",
"impactScore": null,
"integrityImpact": "None",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Low",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:A/AC:L/Au:N/C:P/I:N/A:N",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.2,
"id": "CNVD-2017-22839",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:A/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.2,
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:A/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "NONE",
"baseScore": 3.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 6.5,
"id": "VHN-117848",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "LOW",
"trust": 0.1,
"vectorString": "AV:A/AC:L/AU:N/C:P/I:N/A:N",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT_NETWORK",
"author": "NVD",
"availabilityImpact": "NONE",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "HIGH",
"exploitabilityScore": 2.8,
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
},
{
"attackComplexity": "Low",
"attackVector": "Adjacent Network",
"author": "NVD",
"availabilityImpact": "None",
"baseScore": 6.5,
"baseSeverity": "Medium",
"confidentialityImpact": "High",
"exploitabilityScore": null,
"id": "CVE-2017-9645",
"impactScore": null,
"integrityImpact": "None",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2017-9645",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2017-22839",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201706-592",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-117848",
"trust": 0.1,
"value": "LOW"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "VULHUB",
"id": "VHN-117848"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "An Inadequate Encryption Strength issue was discovered in Mirion Technologies DMC 3000 Transmitter Module, iPam Transmitter f/DMC 2000, RDS-31 iTX and variants (including RSD31-AM Package), DRM-1/2 and variants (including Solar PWR Package), DRM and RDS Based Boundary Monitors, External Transmitters, Telepole II, and MESH Repeater (Telemetry Enabled Devices). Decryption of data is possible at the hardware level. plural Mirion Technologies The product contains a vulnerability related to cryptographic strength.Information may be obtained. Mirion Technologies provides a source of solutions for nuclear, military, radiation detection and monitoring. Mirion Technologies Telemetry Enabled Devices is a denial of service vulnerability that could be exploited by an attacker to transmit fraudulent data or perform denial of service. \nSuccessfully exploiting these issues may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. RSD31-AM Package),\nDRM-1/2 and variants (incl. Security vulnerabilities exist in several Mirion Technologies products",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "VULHUB",
"id": "VHN-117848"
}
],
"trust": 2.7
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-9645",
"trust": 3.6
},
{
"db": "ICS CERT",
"id": "ICSA-17-208-02",
"trust": 3.4
},
{
"db": "BID",
"id": "100001",
"trust": 2.0
},
{
"db": "CNNVD",
"id": "CNNVD-201706-592",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2017-22839",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473",
"trust": 0.8
},
{
"db": "IVD",
"id": "D3A1F9FF-B730-4B2E-AC28-CCBFC599FF91",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-117848",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "VULHUB",
"id": "VHN-117848"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"id": "VAR-201709-1106",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "VULHUB",
"id": "VHN-117848"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
}
]
},
"last_update_date": "2023-12-18T12:44:22.977000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "https://www.mirion.com/"
},
{
"title": "Patch for Mirion Technologies Telemetry Enabled Devices Denial of Service Vulnerability (CNVD-2017-22839)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/100842"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-326",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-117848"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "NVD",
"id": "CVE-2017-9645"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.4,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-208-02"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/100001"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-9645"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-9645"
},
{
"trust": 0.3,
"url": "https://www.mirion.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "VULHUB",
"id": "VHN-117848"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"db": "VULHUB",
"id": "VHN-117848"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-08-25T00:00:00",
"db": "IVD",
"id": "d3a1f9ff-b730-4b2e-ac28-ccbfc599ff91"
},
{
"date": "2017-08-25T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"date": "2017-09-20T00:00:00",
"db": "VULHUB",
"id": "VHN-117848"
},
{
"date": "2017-07-27T00:00:00",
"db": "BID",
"id": "100001"
},
{
"date": "2017-10-19T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"date": "2017-09-20T16:29:01.003000",
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"date": "2017-06-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-08-25T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-22839"
},
{
"date": "2019-10-09T00:00:00",
"db": "VULHUB",
"id": "VHN-117848"
},
{
"date": "2017-07-27T00:00:00",
"db": "BID",
"id": "100001"
},
{
"date": "2017-10-19T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-008473"
},
{
"date": "2019-10-09T23:30:45.737000",
"db": "NVD",
"id": "CVE-2017-9645"
},
{
"date": "2019-10-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote or local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Mirion Technologies Vulnerability related to cryptographic strength in products",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2017-008473"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "encryption problem",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201706-592"
}
],
"trust": 0.6
}
}
VAR-201709-1107
Vulnerability from variot - Updated: 2023-12-18 12:44A Use of Hard-Coded Cryptographic Key issue was discovered in Mirion Technologies DMC 3000 Transmitter Module, iPam Transmitter f/DMC 2000, RDS-31 iTX and variants (including RSD31-AM Package), DRM-1/2 and variants (including Solar PWR Package), DRM and RDS Based Boundary Monitors, External Transmitters, Telepole II, and MESH Repeater (Telemetry Enabled Devices). An unchangeable, factory-set key is included in the 900 MHz transmitter firmware. plural Mirion Technologies The product contains a vulnerability related to the use of hard-coded credentials.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Mirion Technologies provides a source of solutions for nuclear, military, radiation detection and monitoring. Mirion Technologies Telemetry Enabled Devices is a denial of service vulnerability that could allow an attacker to transmit fraudulent data or perform denial of service. Successfully exploiting these issues may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. RSD31-AM Package), DRM-1/2 and variants (incl. are products of Mirion Technologies in the United States. Mirion Technologies DMC 3000 Transmitter Module is a DMC 3000 series control card
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201709-1107",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "dmc 3000",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "rds-31 itx",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "drm-1\\/2",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "ipam transmitter f\\/dmc 2000",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "wrm2 mesh repeater",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "telepole ii",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "rsd31-am",
"scope": "eq",
"trust": 1.6,
"vendor": "mirion",
"version": null
},
{
"model": "dmc 3000 transmitter module",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "drm-1/2",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "ipam transmitter f/dmc 2000",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "mesh repeater",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "rds-31 itx",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "rsd31-am",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "telepole ii",
"scope": null,
"trust": 0.8,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices dmc transmitter module",
"scope": "eq",
"trust": 0.6,
"vendor": "mirion",
"version": "3000"
},
{
"model": "telemetry enabled devices ipam transmitter f/dmc",
"scope": "eq",
"trust": 0.6,
"vendor": "mirion",
"version": "2000"
},
{
"model": "telemetry enabled devices rds-31 itx and variants",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices drm-1/2 and variants",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices drm and rds based boundary monitors",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices telepole ii",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices external transmitters",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telemetry enabled devices mesh repeater",
"scope": null,
"trust": 0.6,
"vendor": "mirion",
"version": null
},
{
"model": "telepole ii",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "rds-31 itx",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "mesh repeater",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "ipam transmitter f/dmc",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "20000"
},
{
"model": "external transmitters",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "drm-1/2",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "drm and rds based boundary monitors",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "0"
},
{
"model": "dmc transmitter module",
"scope": "eq",
"trust": 0.3,
"vendor": "mirion",
"version": "30000"
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "dmc 3000",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "ipam transmitter f dmc 2000",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "telepole ii",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "rds 31 itx",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "rsd31 am",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "wrm2 mesh repeater",
"version": null
},
{
"model": null,
"scope": "eq",
"trust": 0.2,
"vendor": "drm 1 2",
"version": null
}
],
"sources": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:dmc_3000_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:dmc_3000:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:ipam_transmitter_f\\/dmc_2000_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:ipam_transmitter_f\\/dmc_2000:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:telepole_ii_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:telepole_ii:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:rds-31_itx_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:rds-31_itx:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:rsd31-am_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:rsd31-am:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:wrm2_mesh_repeater_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:wrm2_mesh_repeater:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
},
{
"children": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:mirion_technologies:drm-1\\/2_firmware:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:h:mirion_technologies:drm-1\\/2:-:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": false
}
],
"operator": "OR"
}
],
"cpe_match": [],
"operator": "AND"
}
]
}
],
"sources": [
{
"db": "NVD",
"id": "CVE-2017-9649"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Ruben Santamarta of IOActive",
"sources": [
{
"db": "BID",
"id": "100001"
}
],
"trust": 0.3
},
"cve": "CVE-2017-9649",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"acInsufInfo": false,
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "NVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.4,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 5.5,
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "MEDIUM",
"trust": 1.0,
"userInteractionRequired": false,
"vectorString": "AV:A/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"acInsufInfo": null,
"accessComplexity": "Medium",
"accessVector": "Adjacent Network",
"authentication": "None",
"author": "NVD",
"availabilityImpact": "Partial",
"baseScore": 5.4,
"confidentialityImpact": "Partial",
"exploitabilityScore": null,
"id": "CVE-2017-9649",
"impactScore": null,
"integrityImpact": "Partial",
"obtainAllPrivilege": null,
"obtainOtherPrivilege": null,
"obtainUserPrivilege": null,
"severity": "Medium",
"trust": 0.8,
"userInteractionRequired": null,
"vectorString": "AV:A/AC:M/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.2,
"id": "CNVD-2017-22838",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:A/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
{
"accessComplexity": "HIGH",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "IVD",
"availabilityImpact": "PARTIAL",
"baseScore": 4.3,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 3.2,
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.2,
"vectorString": "AV:A/AC:H/Au:N/C:P/I:P/A:P",
"version": "2.9 [IVD]"
},
{
"accessComplexity": "MEDIUM",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "PARTIAL",
"baseScore": 5.4,
"confidentialityImpact": "PARTIAL",
"exploitabilityScore": 5.5,
"id": "VHN-117852",
"impactScore": 6.4,
"integrityImpact": "PARTIAL",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:A/AC:M/AU:N/C:P/I:P/A:P",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "HIGH",
"attackVector": "ADJACENT_NETWORK",
"author": "NVD",
"availabilityImpact": "LOW",
"baseScore": 5.0,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "LOW",
"exploitabilityScore": 1.6,
"impactScore": 3.4,
"integrityImpact": "LOW",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.0,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
},
{
"attackComplexity": "High",
"attackVector": "Adjacent Network",
"author": "NVD",
"availabilityImpact": "Low",
"baseScore": 5.0,
"baseSeverity": "Medium",
"confidentialityImpact": "Low",
"exploitabilityScore": null,
"id": "CVE-2017-9649",
"impactScore": null,
"integrityImpact": "Low",
"privilegesRequired": "None",
"scope": "Unchanged",
"trust": 0.8,
"userInteraction": "None",
"vectorString": "CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L",
"version": "3.0"
}
],
"severity": [
{
"author": "NVD",
"id": "CVE-2017-9649",
"trust": 1.8,
"value": "MEDIUM"
},
{
"author": "CNVD",
"id": "CNVD-2017-22838",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201706-588",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f",
"trust": 0.2,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-117852",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "VULHUB",
"id": "VHN-117852"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "A Use of Hard-Coded Cryptographic Key issue was discovered in Mirion Technologies DMC 3000 Transmitter Module, iPam Transmitter f/DMC 2000, RDS-31 iTX and variants (including RSD31-AM Package), DRM-1/2 and variants (including Solar PWR Package), DRM and RDS Based Boundary Monitors, External Transmitters, Telepole II, and MESH Repeater (Telemetry Enabled Devices). An unchangeable, factory-set key is included in the 900 MHz transmitter firmware. plural Mirion Technologies The product contains a vulnerability related to the use of hard-coded credentials.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. Mirion Technologies provides a source of solutions for nuclear, military, radiation detection and monitoring. Mirion Technologies Telemetry Enabled Devices is a denial of service vulnerability that could allow an attacker to transmit fraudulent data or perform denial of service. \nSuccessfully exploiting these issues may allow an attacker to bypass certain security restrictions and perform unauthorized actions. This may aid in further attacks. RSD31-AM Package),\nDRM-1/2 and variants (incl. are products of Mirion Technologies in the United States. Mirion Technologies DMC 3000 Transmitter Module is a DMC 3000 series control card",
"sources": [
{
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "VULHUB",
"id": "VHN-117852"
}
],
"trust": 2.7
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2017-9649",
"trust": 3.6
},
{
"db": "ICS CERT",
"id": "ICSA-17-208-02",
"trust": 3.4
},
{
"db": "BID",
"id": "100001",
"trust": 2.0
},
{
"db": "CNNVD",
"id": "CNNVD-201706-588",
"trust": 0.9
},
{
"db": "CNVD",
"id": "CNVD-2017-22838",
"trust": 0.8
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474",
"trust": 0.8
},
{
"db": "IVD",
"id": "BB97C299-9654-48D6-B71D-FF9DDCBCAD7F",
"trust": 0.2
},
{
"db": "VULHUB",
"id": "VHN-117852",
"trust": 0.1
}
],
"sources": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "VULHUB",
"id": "VHN-117852"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"id": "VAR-201709-1107",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "VULHUB",
"id": "VHN-117852"
}
],
"trust": 1.9
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"ICS"
],
"sub_category": null,
"trust": 0.8
}
],
"sources": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
}
]
},
"last_update_date": "2023-12-18T12:44:22.933000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "Top Page",
"trust": 0.8,
"url": "https://www.mirion.com/"
},
{
"title": "Mirion Technologies Telemetry Enabled Devices Patch for Denial of Service Vulnerabilities",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchinfo/show/100845"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-798",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-117852"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "NVD",
"id": "CVE-2017-9649"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 3.4,
"url": "https://ics-cert.us-cert.gov/advisories/icsa-17-208-02"
},
{
"trust": 1.7,
"url": "http://www.securityfocus.com/bid/100001"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-9649"
},
{
"trust": 0.8,
"url": "https://nvd.nist.gov/vuln/detail/cve-2017-9649"
},
{
"trust": 0.3,
"url": "https://www.mirion.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "VULHUB",
"id": "VHN-117852"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"db": "VULHUB",
"id": "VHN-117852"
},
{
"db": "BID",
"id": "100001"
},
{
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-08-25T00:00:00",
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"date": "2017-08-25T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"date": "2017-09-20T00:00:00",
"db": "VULHUB",
"id": "VHN-117852"
},
{
"date": "2017-07-27T00:00:00",
"db": "BID",
"id": "100001"
},
{
"date": "2017-10-19T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"date": "2017-09-20T16:29:01.097000",
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"date": "2017-06-15T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2017-08-25T00:00:00",
"db": "CNVD",
"id": "CNVD-2017-22838"
},
{
"date": "2019-10-09T00:00:00",
"db": "VULHUB",
"id": "VHN-117852"
},
{
"date": "2017-07-27T00:00:00",
"db": "BID",
"id": "100001"
},
{
"date": "2017-10-19T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2017-008474"
},
{
"date": "2019-10-09T23:30:46.173000",
"db": "NVD",
"id": "CVE-2017-9649"
},
{
"date": "2019-10-17T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "remote or local",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Mirion Technologies Telemetry Enabled Devices Denial of service vulnerability",
"sources": [
{
"db": "IVD",
"id": "bb97c299-9654-48d6-b71d-ff9ddcbcad7f"
},
{
"db": "CNVD",
"id": "CNVD-2017-22838"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "trust management problem",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201706-588"
}
],
"trust": 0.6
}
}