CVE-2017-0144: EternalBlue

Score: 8.1
HIGH
Published: 2017-03-14Affected: Microsoft Windows SMBv1CWE-120 β†—

What is EternalBlue?

A buffer overflow in Microsoft Windows SMBv1 protocol discovered by the NSA and leaked by the Shadow Brokers. Allows remote code execution on unpatched Windows systems via specially crafted SMB packets.

Impact & Exploitation

Powered the WannaCry ransomware attack (200,000+ systems in 150 countries) and NotPetya ($10B+ in damages). Used by multiple nation-state actors.

Related Resources

πŸ” Related CWE Entries

πŸ“– Security Guides

πŸ›‘οΈ Notable Vulnerabilities

πŸ”— External References

Precogs Logo

Precogs Research

This vulnerability intelligence report was analyzed and enriched by the Precogs AI Security Team. Our researchers continuously monitor emerging threats across AI code, LLM pipelines, and binary architectures to ensure accurate real-time remediation guidance.

Base Score

CVSS8.1
SeverityHIGH
CWECWE-120
Published2017-03-14

Tags

windowssmbransomwarefirmware

Quick Links

Is your system affected?

Precogs AI detects EternalBlue in compiled binaries and firmware β€” even without source code.

Request Deep Analysis

Is Your System Still Exposed to Critical CVEs?

Vulnerabilities like CVE-2017-0144 EternalBlue don’t just exist in source code β€” they persist in compiled binaries, containers, and embedded systems. Precogs AI detects vulnerable components across your entire stack β€” even when source code isn’t available.

Request Deep AnalysisBook a demo