CVE-2017-16929

HIGH EXPLOITED

Claymore Dual GPU miner 10.1 - Path Traversal

Title source: llm
STIX 2.1

Exploitation Summary

CVE-2017-16929 has been observed exploited in the wild (reported by VulnCheck KEV). EIP tracks 1 public exploit from researchers including tintinweb.

AI-analyzed exploit summary This exploit demonstrates a buffer overflow vulnerability in Claymore's Dual Miner via overly long JSON-RPC method names or fields, causing a crash. It also includes a path traversal vector to retrieve arbitrary files.

Description

The remote management interface on the Claymore Dual GPU miner 10.1 is vulnerable to an authenticated directory traversal vulnerability exploited by issuing a specially crafted request, allowing a remote attacker to read/write arbitrary files. This can be exploited via ../ sequences in the pathname to miner_file or miner_getfile.

Exploits (1)

exploitdb WORKING POC
by tintinweb · pythonremotewindows
https://www.exploit-db.com/exploits/43231

This exploit demonstrates a buffer overflow vulnerability in Claymore's Dual Miner via overly long JSON-RPC method names or fields, causing a crash. It also includes a path traversal vector to retrieve arbitrary files.

Classification
Working Poc 95%
Attack Type
Dos
Complexity
Trivial
Reliability
Reliable
Target: Claymore's Dual ETH + DCR/SC/LBC/PASC GPU Miner v10.0
No auth needed
Prerequisites: Network access to the miner's remote management port (default: 3333)
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (3)

Core 3
Core References
Exploit, Third Party Advisory, VDB Entry exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/43231/

Scores

CVSS v3 8.1
EPSS 0.1289
EPSS Percentile 95.8%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Details

VulnCheck KEV 2018-01-17
CWE
CWE-119 CWE-22
Status published
Products (1)
claymore_dual_miner_project/claymore_dual_miner 10.1
Published Dec 05, 2017
Tracked Since Feb 18, 2026