CVE-2017-2156: High severity vivaldi vulnerability

Q: What is the severity of CVE-2017-2156?

CVE-2017-2156 is classified as a high severity vulnerability due to its potential to allow arbitrary code execution.

Q: How do I fix CVE-2017-2156?

To fix CVE-2017-2156, upgrade the Vivaldi installer for Windows to version 1.7.735.48 or later.

Q: What does CVE-2017-2156 affect?

CVE-2017-2156 affects the Vivaldi installer for Windows versions prior to 1.7.735.48.

Q: What type of vulnerability is CVE-2017-2156?

CVE-2017-2156 is classified as an untrusted search path vulnerability.

Q: Can CVE-2017-2156 be exploited remotely?

Yes, CVE-2017-2156 can be exploited remotely if an attacker places a specially crafted executable in an unspecified directory.

Published Apr 28, 2017

Updated

Untrusted search path vulnerability in Vivaldi installer for Windows prior to version 1.7.735.48 allows an attacker to execute arbitrary code via a specially crafted executable file in an unspecified directory.

Affected Software

1 affected component

Vivaldi Vivaldi installer for Windows<=1.7.735.46

Remediation

Patch Available

https://vivaldi.com/security/vulnerability-disclosure-vivaldi-installer-for-windows-could-run-arbitrary-downloaded-code-jvn71572107/

Event History

Apr 28, 2017

CVE Published

via MITRE·04:00 PM

Data Sourced

via MITRE·04:00 PM

DescriptionWeakness

Frequently Asked Questions

What is the severity of CVE-2017-2156?

CVE-2017-2156 is classified as a high severity vulnerability due to its potential to allow arbitrary code execution.

How do I fix CVE-2017-2156?

To fix CVE-2017-2156, upgrade the Vivaldi installer for Windows to version 1.7.735.48 or later.

What does CVE-2017-2156 affect?