CVE-2017-0143

ENISA EUVD: EUVD-2017-0510 ↗

Exploited in the Wild ✓ Confirmed 0-Day ★ Google Project Zero

Triaged: March 5, 2026 2 articles

VulnLookup ↗ NVD ↗ EUVD ↗ MITRE ↗ Advisory ↗ P0 Sheet ↗ CISA KEV ↗

EPSS Score

Source: FIRST.org · 2026-05-24

94.02%

probability

This CVE has a 94.02% probability of being exploited in the next 30 days.

0% Top 99.9th percentile of all CVEs 100%

CVSS v3.1

Source: NVD

8.8

Attack Vector

Network

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Description

Project Zero

Type confusion in SMB messages (EternalSynergy)

Affected Products

Google Project Zero

Patched

March 14, 2017

Reported by

???

Root Cause Analysis

???

Exploits & PoC

h3x0v3rl0rd/MS17-010_CVE-2017-0143

MS17-010_CVE-2017-0143

NatteeSetobol/Etern-blue-Windows-7-Checker

EternalBlue is a well-known SMB exploit created by the NSA to attack various versions of Windows, including Windows 7. Etern-Blue-Windows-7-Checker wi

valarauco/wannafind

Simple script using nmap to detect CVE-2017-0143 MS17-010 in your network

hackingyseguridad/smb

SMBv1: CVE-2017-0143, gravedad 8.8, de ejecucion remota de codigo (RCE), en Windows con SMBv1 (ms17-010)

h3x0v3rl0rd/MS17-010

MS17-010 (CVE-2017-0143) - Python3 Script

5 repos — triés par ⭐ Rechercher sur GitHub ↗

Qualys Top 20 Most Exploited Vulnerabilities

Qualys Sep 04, 2023

Inside the customer environment: Where threat actors, vulnerabilities, and exposed assets intersect

Tenable-Research May 27, 2026

Signal Intelligence

Confidenceⓘ

95%

EPSS 94.02%

CVSS v3.1 8.8

Mentions 2

Last Seen May 27, 2026

CNA Information

Analyst Note

Auto-imported from Google Project Zero — confirmed zero-day by definition.

Threat Actors 16

Cobalt

apt_group Financial crime 🇷🇺 RU

Careto

apt_group Information theft and espionage 🇪🇸 ES

FusionCore

apt_group 🇪🇺 EU

The Shadow Brokers

apt_group 🇷🇺 RU

Ice Fog

apt_group Information theft and espionage 🇨🇳 CN

DNSpionage

apt_group Information theft and espionage 🇮🇷 IR

Kinsing

apt_group 🇷🇺 RU

Equation Group

apt_group Sabotage and destruction 🇺🇸 US

Infy

apt_group Information theft and espionage 🇮🇷 IR

Evilnum

apt_group Information theft and espionage

TeamTNT

apt_group 🇩🇪 DE

Comment Crew

apt_group Information theft and espionage 🇨🇳 CN

UNC4393

apt_group 🇷🇺 RU

[Unnamed group]

apt_group 🇨🇳 CN

Shadow Network

apt_group Information theft and espionage 🇨🇳 CN

Mana Team

apt_group 🇨🇳 CN

Triage Info

Decided atMar 05, 2026