How severe is CVE-2017-6517?

This vulnerability has a severity rating of CRITICAL with a CVSS score of 9.8 out of 10.

What type of vulnerability is CVE-2017-6517?

This is classified as CWE-427, which is a common weakness in software security.

CVE-2017-6517 - CRITICAL Severity | CVSS 9.8

Vulnerability Description

Microsoft Skype 7.16.0.102 contains a vulnerability that could allow an unauthenticated, remote attacker to execute arbitrary code on the targeted system. This vulnerability exists due to the way .dll files are loaded by Skype. It allows an attacker to load a .dll of the attacker's choosing that could execute arbitrary code without the user's knowledge.The specific flaw exists within the handling of DLL (api-ms-win-core-winrt-string-l1-1-0.dll) loading by the Skype.exe process.

Related Vulnerabilities

CVE-2017-3090

CRITICAL

CVSS:9.8(Critical)

Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of browser related library extensions in the ins...

CWE-4272017

CVE-2017-3092

CRITICAL

CVSS:9.8(Critical)

Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading of editor control library functions in the insta...

CWE-4272017

CVE-2017-3097

CRITICAL

CVSS:9.8(Critical)

Adobe Digital Editions versions 4.5.4 and earlier contain an insecure library loading vulnerability. The vulnerability is due to unsafe library loading functions in the installer plugin. A successful ...

CWE-4272017

CVE-2018-12805

CRITICAL

CVSS:9.8(Critical)

Adobe Connect versions 9.7.5 and earlier have an Insecure Library Loading vulnerability. Successful exploitation could lead to privilege escalation.

CWE-4272018

CVE-2019-20780

CRITICAL

CVSS:9.8(Critical)

An issue was discovered on LG mobile devices with Android OS 7.0, 7.1, 7.2, 8.0, and 8.1 software. Certain security settings, related to whether packages are verified and accepted only from known sour...

CWE-4272019

CVE-2019-20856

CRITICAL

CVSS:9.8(Critical)

An issue was discovered in Mattermost Desktop App before 4.3.0 on macOS. It allows dylib injection.

CWE-4272019