How severe is CVE-2017-9649?

This vulnerability has a severity rating of MEDIUM with a CVSS score of 5 out of 10.

What type of vulnerability is CVE-2017-9649?

This is classified as CWE-321, which is a common weakness in software security.

CVE-2017-9649

MEDIUM Year: 2017

CVSS v3 Score

5.0

Medium

CVSS v2 Score

5.4

Medium

Weakness Type

CWE-321

View all →

Vulnerability Description

A Use of Hard-Coded Cryptographic Key issue was discovered in Mirion Technologies DMC 3000 Transmitter Module, iPam Transmitter f/DMC 2000, RDS-31 iTX and variants (including RSD31-AM Package), DRM-1/2 and variants (including Solar PWR Package), DRM and RDS Based Boundary Monitors, External Transmitters, Telepole II, and MESH Repeater (Telemetry Enabled Devices). An unchangeable, factory-set key is included in the 900 MHz transmitter firmware.

CVE-2023-39482

MEDIUM

CVSS:4.9(Medium)

Softing Secure Integration Server Hardcoded Cryptographic Key Information Disclosure Vulnerability. This vulnerability allows remote attackers to disclose sensitive information on affected installatio...

CWE-3212023

CVE-2023-44318

MEDIUM

CVSS:4.9(Medium)

Affected devices use a hardcoded key to obfuscate the configuration backup that an administrator can export from the device. This could allow an authenticated attacker with administrative privileges o...

CWE-3212023

CVE-2023-6482

MEDIUM

CVSS:5.2(Medium)

Use of encryption key derived from static information in Synaptics Fingerprint Driver allows an attacker to set up a TLS session with the fingerprint sensor and send restricted commands to the fingerp...

CWE-3212023

CVE-2020-25193

MEDIUM

CVSS:5.3(Medium)

By having access to the hard-coded cryptographic key for GE Reason RT430, RT431 & RT434 GNSS clocks in firmware versions prior to version 08A06, attackers would be able to intercept and decrypt encryp...

CWE-3212020

CVE-2024-46889

MEDIUM

CVSS:5.3(Medium)

A vulnerability has been identified in SINEC INS (All versions < V1.0 SP2 Update 3). The affected application uses hard-coded cryptographic key material to obfuscate configuration files. This could al...

CWE-3212024

CVE-2017-14014

MEDIUM

CVSS:4.6(Medium)

Boston Scientific ZOOM LATITUDE PRM Model 3120 uses a hard-coded cryptographic key to encrypt PHI prior to having it transferred to removable media. CVSS v3 base score: 4.6; CVSS vector string: AV:P/A...

CWE-3212017

CVE-2017-9649

Vulnerability Description

Related Vulnerabilities

CVE-2023-39482

CVE-2023-44318

CVE-2023-6482

CVE-2020-25193

CVE-2024-46889

CVE-2017-14014