CVE-2017-0148
Microsoft SMBv1 Server Remote Code Execution Vulnerability
CVSS
—
No CVSS
EPSS
99.4%
p100
KEV
YES
Apr 6, 2022
Exploit Today
80
0-100
Published: — · Last modified: —
99.4%EPSS · 30 days99.4%
2026-06-302026-07-16
Product
Microsoft / SMBv1 server
Vulnerability
Microsoft SMBv1 Server Remote Code Execution Vulnerability
Added to KEV
Apr 6, 2022
Remediate by
Apr 27, 2022
Known ransomware use
Yes
Summary description
The SMBv1 server in Microsoft allows remote attackers to execute arbitrary code via crafted packets.
Required action
Apply updates per vendor instructions.
Notes
https://nvd.nist.gov/vuln/detail/CVE-2017-0148
CVECVSSEPSSKEVRExploitTitleMod.
CVE-2017-0147—100.0%
KEV—80Microsoft Windows SMBv1 Information Disclosure Vulnerability—