CVE-2017-0144

Vulnerability updated 7 months ago (2024-05-04T22:02:47.143Z)

Download STIX

Preview STIX

Not enough context has been learned about CVE-2017-0144 for a description yet. However we're tracking it as a Vulnerability profile. Vulnerability: A flaw in software design or implementation

Description last updated:

What's your take? (Question 1 of 5)

Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.

Possible Aliases / Cluster overlaps

It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.

Alias Description	Votes
Eternalblue is a possible alias for CVE-2017-0144. EternalBlue is a software vulnerability, specifically a flaw in the design or implementation of Microsoft's Server Message Block (SMB) protocol. This vulnerability, officially known as CVE-2017-0144, allows for the execution of arbitrary code on affected systems. It became publicly known after a gro	5

Miscellaneous Associations

Other elements of context that could aid in the identification of relevance

Windows

Ransomware

Exploit

Vulnerability

Analyst Notes & Discussion

Be the first to leave your mark here! Log in to share your views and vote.

Associated Malware

To see the evidence that has resulted in these malware associations, create a free account

Alias Description	Association Type	Votes
The WannaCry Malware is associated with CVE-2017-0144. WannaCry is a type of malware, specifically ransomware, that made headlines in 2017 as one of the most devastating cyberattacks in recent history. The WannaCry ransomware exploited vulnerabilities in Windows' Server Message Block protocol (SMBv1), specifically CVE-2017-0144, CVE-2017-0145, and CVE-2	Unspecified	3

Source Document References

Information about the CVE-2017-0144 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more

Source Link	CreatedAt	Title
BankInfoSecurity	2 months ago	NoName Apparently Allies With RansomHub Operation
ESET	2 months ago	CosmicBeetle steps up: Probation period at RansomHub
CISA	3 months ago	#StopRansomware: RansomHub Ransomware \| CISA
CISA	a year ago	Enhancing Cyber Resilience: Insights from the CISA Healthcare and Public Health Sector Risk and Vulnerability Assessment \| CISA
CERT-EU	a year ago	Navigating 20 years of cybersecurity: The evolution of patch management
CERT-EU	a year ago	Qualys Top 20 Exploited Vulnerabilities \| Qualys Security Blog
MITRE	2 years ago	Emissary Panda Attacks Middle East Government SharePoint Servers
MITRE	2 years ago	Lucifer: New Cryptojacking and DDoS Hybrid Malware Exploiting High and Critical Vulnerabilities to Infect Windows Devices
MITRE	2 years ago	Petya Ransomware \| CISA
SecurityIntelligence.com	2 years ago	Critical Remote Code Execution Vulnerability in SPNEGO Extended Negotiation Security Mechanism
DARKReading	2 years ago	Ransomware's Favorite Target: Critical Infrastructure and Its Industrial Control Systems
CERT-EU	2 years ago	Top cyberthreats on enterprise networks. Network traffic monitoring: 2020 data