CVE-2017-7237
CVE-2017-7237 is a critical-severity vulnerability in Spiceworks with a CVSS 3.x base score of 9.8. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low.
Key facts
- Severity: Critical (CVSS 3.x base score 9.8)
- CVSS v2: 7.5
- EPSS exploit prediction: 7% (93rd percentile)
- Actively exploited: Not listed in CISA KEV
- Affected product: Spiceworks
- Published:
- Last modified:
Description
The Spiceworks TFTP Server, as distributed with Spiceworks Inventory 7.5, allows remote attackers to access the Spiceworks data\configurations directory by leveraging the unauthenticated nature of the TFTP service for all clients who can reach UDP port 69, as demonstrated by a WRQ (aka Write request) operation for a configuration file or an executable file.
Frequently asked questions
- What is CVE-2017-7237?
- The Spiceworks TFTP Server, as distributed with Spiceworks Inventory 7.5, allows remote attackers to access the Spiceworks data\configurations directory by leveraging the unauthenticated nature of the TFTP service for all clients who can reach UDP port 69, as demonstrated by a WRQ (aka Write request) operation for a configuration file or an executable file.
- How severe is CVE-2017-7237?
- CVE-2017-7237 has a CVSS 3.x base score of 9.8, rated critical severity. It is exploitable over network with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is high, integrity high, and availability high.
- Is CVE-2017-7237 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 7% (93rd percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2017-7237?
- CVE-2017-7237 affects Spiceworks. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2017-7237?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround. Given its critical severity, prioritise patching exposed systems.
- When was CVE-2017-7237 published?
- CVE-2017-7237 was published on 2017-04-06 and last updated on 2026-06-17.
References
- http://hyp3rlinx.altervista.org/advisories/SPICEWORKS-IMPROPER-ACCESS-CONTROL-FILE-OVERWRITE.txt
- https://community.spiceworks.com/support/inventory/docs/network-config#security
- https://www.exploit-db.com/exploits/41825/
Affected products (1)
- cpe:2.3:a:spiceworks:spiceworks:7.5:*:*:*:*:*:*:*
More vulnerabilities in Spiceworks
- CVE-2020-23451 — High (CVSS 8.8): Spiceworks Version <= 7.5.00107 is affected by CSRF which can lead to privilege escalation via "/settings/v1/users"…
- CVE-2012-2956 — Medium (CVSS 6.5): SQL injection vulnerability in SpiceWorks 5.3.75941 allows remote authenticated users to execute arbitrary SQL commands…
- CVE-2020-25901 — Medium (CVSS 6.1): Host Header Injection in Spiceworks 7.5.7.0 allowing the attacker to render arbitrary links that point to a malicious…
- CVE-2020-23450 — Medium (CVSS 5.4): Spiceworks Version <= 7.5.00107 is affected by XSS. Any name typed on Custom Groups function is vulnerable to stored…
- CVE-2012-6658 — Medium (CVSS 4.3): Multiple cross-site scripting (XSS) vulnerabilities in SpiceWorks 5.3.75941 allow remote attackers to inject arbitrary…
- CVE-2014-3740 — Low (CVSS 3.5): Cross-site scripting (XSS) vulnerability in SpiceWorks before 7.2.00195 allows remote authenticated users to inject…