How severe is CVE-2017-20084?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.8 out of 10.

What type of vulnerability is CVE-2017-20084?

This is classified as CWE-912, which is a common weakness in software security.

CVE-2017-20084 - HIGH Severity | CVSS 7.8

Vulnerability Description

A vulnerability has been found in JUNG Smart Visu Server 1.0.804/1.0.830/1.0.832 and classified as critical. Affected by this vulnerability is an unknown functionality of the component KNX Group Address. The manipulation leads to backdoor. Local access is required to approach this attack. The exploit has been disclosed to the public and may be used. Upgrading to version 1.0.900 is able to address this issue. It is recommended to upgrade the affected component.

Related Vulnerabilities

CVE-2017-20083

HIGH

CVSS:7.8(High)

A vulnerability, which was classified as critical, was found in JUNG Smart Visu Server 1.0.804/1.0.830/1.0.832. Affected is an unknown function of the component SSH Server. The manipulation leads to b...

CWE-9122017

CVE-2020-28593

HIGH

CVSS:8.1(High)

A unauthenticated backdoor exists in the configuration server functionality of Cosori Smart 5.8-Quart Air Fryer CS158-AF 1.1.0. A specially crafted JSON object can lead to code execution. An attacker ...

CWE-9122020

CVE-2024-22044

HIGH

CVSS:7.5(High)

A vulnerability has been identified in SENTRON 3KC ATC6 Expansion Module Ethernet (3KC9000-8TL75) (All versions). Affected devices expose an unused, unstable http service at port 80/tcp on the Modbus-...

CWE-9122024

CVE-2025-0626

HIGH

CVSS:7.5(High)

The "monitor" binary in the firmware of the affected product attempts to mount to a hard-coded, routable IP address, bypassing existing device network settings to do so. The function also enables the ...

CWE-9122025

CVE-2025-0675

HIGH

CVSS:7.5(High)

Multiple Elber products suffer from an unauthenticated device configuration and client-side hidden functionality disclosure.

CWE-9122025

CVE-2022-36429

HIGH

CVSS:7.2(High)

A command execution vulnerability exists in the ubus backend communications functionality of Netgear Orbi Satellite RBS750 4.6.8.5. A specially-crafted JSON object can lead to arbitrary command execut...

CWE-9122022