CVE-2017-7912

Name: CVE-2017-7912
Creator: NVD / NIST
Published: 2019-04-08T15:29:00.263+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 4.77%

Last modified Jun 17, 2026

CVE-2017-7912 is a vulnerability of currently unknown severity. Hanwha Techwin SRN-4000, SRN-4000 firmware versions prior to SRN4000_v2.16_170401, A specially crafted http request and response could allow an attacker to gain access to the device management page with admin privileges without proper authentication.. EPSS estimates a 4.77% chance of exploitation in the next 30 days.

Description

Hanwha Techwin SRN-4000, SRN-4000 firmware versions prior to SRN4000_v2.16_170401, A specially crafted http request and response could allow an attacker to gain access to the device management page with admin privileges without proper authentication.

Metrics

EPSS Probability

4.77%

90.8th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

Vendor	Product	Versions
Hanwhasecurity	Srn-4000 Firmware	< 2.16_170401

References

https://ics-cert.us-cert.gov/advisories/ICSA-17-136-03Third Party Advisory, US Government Resource
https://ics-cert.us-cert.gov/advisories/ICSA-17-136-03Third Party Advisory, US Government Resource

Timeline

Published: Apr 8, 2019
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2017-7912?

How severe is CVE-2017-7912?

Severity scoring for CVE-2017-7912 is pending analysis. The EPSS model estimates a 4.77% probability of exploitation in the next 30 days.

How do I fix CVE-2017-7912?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2017-7912?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST