CVE-2017-2100

Published: Apr 28, 2017Modified: May 13, 2026

6.3

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:U/C:L/I:L/A:L

Exploitability: 2.8 / Impact: 3.4

Source: NVD

Description

Hands-on Vulnerability Learning Tool "AppGoat" for Web Application V3.0.1 and earlier allows remote attackers to conduct DNS rebinding attacks via unspecified vectors.

Affected (1)

Products: Ipa: Appgoat

Ipa

1 product

Appgoat

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Ipa Appgoat	Up to 3.0.1

Related CWEs

CWE-20

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

References (4)

http://jvn.jp/en/jp/JVN87662835/index.html

Source: vultures@jpcert.or.jp

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/96229

Source: vultures@jpcert.or.jp

Third Party AdvisoryVDB Entry

http://jvn.jp/en/jp/JVN87662835/index.html

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

http://www.securityfocus.com/bid/96229

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.