CVE-2017-11122
HIGHBroadcom BCM4355C0 Firmware < 9.44.78.27.0.1.56 - Information Leak via ICMPv6 Router Advertisement Offloading
Title source: llmDescription
On Broadcom BCM4355C0 Wi-Fi chips 9.44.78.27.0.1.56, an attacker can trigger an information leak due to insufficient length validation, related to ICMPv6 router advertisement offloading.
References (6)
Core 6
Core References
Exploit, Third Party Advisory, VDB Entry x_refsource_misc
http://packetstormsecurity.com/files/144461/Broadcom-ICMPv6-Information-Leak.html
Third Party Advisory x_refsource_confirm
https://support.apple.com/en-us/HT208113
Third Party Advisory x_refsource_confirm
https://support.apple.com/en-us/HT208112
Exploit, Issue Tracking, Third Party Advisory, VDB Entry x_refsource_misc
https://bugs.chromium.org/p/project-zero/issues/detail?id=1300
Third Party Advisory x_refsource_confirm
https://support.apple.com/HT208113
Third Party Advisory x_refsource_confirm
https://support.apple.com/HT208112
Scores
CVSS v3
7.5
EPSS
0.0100
EPSS Percentile
77.2%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (3)
apple/iphone_os
< 10.3.3
apple/tvos
< 10.2.2
broadcom/bcm4355c0_firmware
< 9.44.78.27.0.1.56
Published
Oct 04, 2017
Tracked Since
Feb 18, 2026