Cyber Resilience

CVE-2017-0144

HighCISA KEVActive ExploitationEUVD ExploitedPublic PoCRansomware-linked

Published: 17 March 2017

Published
17 March 2017
Modified
22 April 2026
KEV Added
10 February 2022
Patch
CVSS Score v3.1 8.8 CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
EPSS Score 0.9923 99.9th percentile
Risk Priority 100 floored blend · peak EPSS

Summary

CVE-2017-0144 is a high-severity an unspecified weakness vulnerability in Siemens Acuson P300 Firmware. Its CVSS base score is 8.8 (High).

Operationally, ranked in the top 0.1% of CVEs by exploit likelihood; CISA has added it to the Known Exploited Vulnerabilities catalog; a public proof-of-concept is referenced.

The strongest mitigations our analysis identified are NIST 800-53 CM-7 (Least Functionality) and SC-7 (Boundary Protection).

Deeper analysis

The vulnerability tracked as CVE-2017-0144 is a remote code execution flaw in the SMBv1 server implementation on multiple Microsoft Windows releases, specifically Windows Vista SP2, Windows Server 2008 SP2 and R2 SP1, Windows 7 SP1, Windows 8.1, Windows Server 2012 Gold and R2, Windows RT 8.1, Windows 10 Gold/1511/1607, and Windows Server 2016. It is triggered by specially crafted network packets and is distinct from the related SMB issues assigned CVE-2017-0143, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148. The flaw received a CVSS 3.1 base score of 8.8, reflecting network attack vector, low attack complexity, and high impact on confidentiality, integrity, and availability.

Remote attackers who can reach an affected SMBv1 service are able to leverage the weakness to execute arbitrary code on the target system. The provided CVSS vector indicates that valid low-privileged credentials are required, after which an attacker can obtain full control equivalent to the privileges of the SMB service.

Public references associate the vulnerability with DOUBLEPULSAR, a kernel-level payload and backdoor that has been discussed in exploit artifacts and neutralization guidance, confirming active interest in both offensive and defensive tooling around this class of SMBv1 issues.

EU & UK References

Vulnerability details

The SMBv1 server in Microsoft Windows Vista SP2; Windows Server 2008 SP2 and R2 SP1; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; and Windows 10 Gold, 1511, and 1607; and Windows Server 2016…

more

allows remote attackers to execute arbitrary code via crafted packets, aka "Windows SMB Remote Code Execution Vulnerability." This vulnerability is different from those described in CVE-2017-0143, CVE-2017-0145, CVE-2017-0146, and CVE-2017-0148.

CWE(s)
KEV Date Added
10 February 2022

Related Threats

CVEs Like This One

CVE-2021-1675Same product: Microsoft Windows 10 1507both on KEV
CVE-2022-30190Same product: Microsoft Windows 10 1507both on KEV
CVE-2021-40444Same product: Microsoft Windows 10 1507both on KEV
CVE-2021-34527Same product: Microsoft Windows 10 1507both on KEV
CVE-2025-24983Same product: Microsoft Windows 10 1507both on KEV
CVE-2019-0708Same product: Microsoft Windows 7both on KEV
CVE-2025-24985Same product: Microsoft Windows 10 1507both on KEV
CVE-2025-24991Same product: Microsoft Windows 10 1507both on KEV
CVE-2025-24054Same product: Microsoft Windows 10 1507both on KEV
CVE-2025-26633Same product: Microsoft Windows 10 1507both on KEV

Affected Assets

microsoft
server message block
1.0
siemens
acuson p300 firmware
13.02, 13.03, 13.20, 13.21
siemens
acuson p500 firmware
va10, vb10
siemens
acuson sc2000 firmware
5.0a · 4.0 — 4.0e
siemens
acuson x700 firmware
1.0, 1.1
siemens
syngo sc2000 firmware
5.0a · 4.0 — 4.0e
siemens
tissue preparation system firmware
all versions
siemens
versant kpcr molecular system firmware
all versions
siemens
versant kpcr sample prep firmware
all versions

Mitigating Controls

Mitigating Controls (NIST 800-53 r5) AI

prevent

Directly mitigates by disabling SMBv1, eliminating the vulnerable service that accepts crafted packets for RCE.

prevent

Requires timely application of Microsoft patches that close the SMBv1 remote code execution flaw before exploitation.

prevent

Enforces boundary rules that block or restrict inbound SMB traffic (TCP 445) from untrusted networks, preventing packet delivery to the vulnerable service.

References