Medium severity4.3NVD Advisory· Published May 22, 2017· Updated May 13, 2026

CVE-2017-2162

Description

FlashAirTM SDHC Memory Card (SD-WE Series <W-03>) V3.00.02 and earlier and FlashAirTM SDHC Memory Card (SD-WD/WC Series <W-02>) V2.00.04 and earlier allows default credentials to be set for wireless LAN connections to the product when enabling the PhotoShare function through a web browser.

Affected products

Toshiba/Flashair
cpe:2.3:a:toshiba:flashair:*:*:*:*:*:*:*:*
Range: <=2.00.04
Toshiba Corporation/FlashAirTM SDHC Memory Card (SD-WD/WC Series <W-02>)v5
Range: V2.00.04 and earlier
Toshiba Corporation/FlashAirTM SDHC Memory Card (SD-WE Series <W-03>)v5
Range: V3.00.02 and earlier

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvndb.jvn.jp/jvndb/JVNDB-2017-000091nvdThird Party AdvisoryVDB Entry
www.toshiba-personalstorage.net/news/20170516a.htmnvdVendor Advisory
jvn.jp/en/jp/JVN81820501/index.htmlnvdThird Party AdvisoryVDB Entry

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000