CVE-2017-11122

On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56, an attacker can trigger an information leak due to insufficient length validation, related to ICMPv6 router advertisement offloading.
References
Link Resource
https://support.apple.com/en-us/HT208113 Third Party Advisory
https://support.apple.com/en-us/HT208112 Third Party Advisory
https://bugs.chromium.org/p/project-zero/issues/detail?id=1300 Exploit Issue Tracking Third Party Advisory VDB Entry
http://packetstormsecurity.com/files/144461/Broadcom-ICMPv6-Information-Leak.html Exploit Third Party Advisory VDB Entry
https://support.apple.com/HT208113 Third Party Advisory
https://support.apple.com/HT208112 Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:broadcom:bcm4355c0_firmware:*:*:*:*:*:*:*:*
cpe:2.3:h:broadcom:bcm4355c0:-:*:*:*:*:*:*:*

Configuration 2 (hide)

OR cpe:2.3:o:apple:tvos:*:*:*:*:*:*:*:*
cpe:2.3:o:apple:iphone_os:*:*:*:*:*:*:*:*

Information

Published : 2017-10-03 18:29

Updated : 2019-03-08 08:06


NVD link : CVE-2017-11122

Mitre link : CVE-2017-11122


JSON object : View

CWE
CWE-200

Exposure of Sensitive Information to an Unauthorized Actor

Advertisement

dedicated server usa

Products Affected

apple

  • tvos
  • iphone_os

broadcom

  • bcm4355c0
  • bcm4355c0_firmware