CVE-2017-17165

EPSS 0.2%
Veröffentlicht 15.02.2018 16:29:02
Zuletzt bearbeitet 21.11.2024 03:17:37
Quelle psirt@huawei.com
Teams Watchlist Login
Unerledigt Login

IPv6 function in Huawei Quidway S2700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, S2300 V200R003C00, V200R003C00SPC300T, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S2700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S5300 V200R003C00, V200R003C00SPC300T, V200R003C00SPC600, V200R003C02, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R005C05, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S5700 V200R003C00, V200R003C00SPC316T, V200R003C00SPC600, V200R003C02, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S600-E V200R008C00, V200R009C00, S6300 V200R003C00, V200R005C00, V200R007C00, V200R008C00, V200R009C00, S6700 V200R003C00, V200R005C00, V200R005C01, V200R005C02, V200R007C00, V200R008C00, V200R009C00 has an out-of-bounds read vulnerability. An unauthenticated attacker may send crafted malformed IPv6 packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause device to reset.

Betroffene Produkte Warnungen 0 Metriken 3 CWE 1 Referenzen 4

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Huawei ≫ Quidway S2700 Firmware Versionv200r003c00spc300

Huawei ≫ Quidway S2700 Version-

Huawei ≫ Quidway S5300 Firmware Versionv200r003c00spc300

Huawei ≫ Quidway S5300 Version-

Huawei ≫ Quidway S5700 Firmware Versionv200r003c00spc300

Huawei ≫ Quidway S5700 Version-

Huawei ≫ S2300 Firmware Versionv200r003c00

Huawei ≫ S2300 Version-

Huawei ≫ S2300 Firmware Versionv200r003c00spc300t

Huawei ≫ S2300 Version-

Huawei ≫ S2300 Firmware Versionv200r005c00

Huawei ≫ S2300 Version-

Huawei ≫ S2300 Firmware Versionv200r006c00

Huawei ≫ S2300 Version-

Huawei ≫ S2300 Firmware Versionv200r007c00

Huawei ≫ S2300 Version-

Huawei ≫ S2300 Firmware Versionv200r008c00

Huawei ≫ S2300 Version-

Huawei ≫ S2300 Firmware Versionv200r009c00

Huawei ≫ S2300 Version-

Huawei ≫ S2700 Firmware Versionv200r005c00

Huawei ≫ S2700 Version-

Huawei ≫ S2700 Firmware Versionv200r006c00

Huawei ≫ S2700 Version-

Huawei ≫ S2700 Firmware Versionv200r007c00

Huawei ≫ S2700 Version-

Huawei ≫ S2700 Firmware Versionv200r008c00

Huawei ≫ S2700 Version-

Huawei ≫ S2700 Firmware Versionv200r009c00

Huawei ≫ S2700 Version-

Huawei ≫ S5300 Firmware Versionv200r003c00

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r003c00spc300t

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r003c00spc600

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r003c02

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r005c00

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r005c01

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r005c02

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r005c03

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r005c05

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r006c00

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r007c00

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r008c00

Huawei ≫ S5300 Version-

Huawei ≫ S5300 Firmware Versionv200r009c00

Huawei ≫ S5300 Version-

Huawei ≫ S5700 Firmware Versionv200r003c00

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r003c00spc316t

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r003c00spc600

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r003c02

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r005c00

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r005c01

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r005c02

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r005c03

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r006c00

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r007c00

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r008c00

Huawei ≫ S5700 Version-

Huawei ≫ S5700 Firmware Versionv200r009c00

Huawei ≫ S5700 Version-

Huawei ≫ S600-e Firmware Versionv200r008c00

Huawei ≫ S600-e Version-

Huawei ≫ S600-e Firmware Versionv200r009c00

Huawei ≫ S600-e Version-

Huawei ≫ S6300 Firmware Versionv200r003c00

Huawei ≫ S6300 Version-

Huawei ≫ S6300 Firmware Versionv200r005c00

Huawei ≫ S6300 Version-

Huawei ≫ S6300 Firmware Versionv200r007c00

Huawei ≫ S6300 Version-

Huawei ≫ S6300 Firmware Versionv200r008c00

Huawei ≫ S6300 Version-

Huawei ≫ S6300 Firmware Versionv200r009c00

Huawei ≫ S6300 Version-

Huawei ≫ S6700 Firmware Versionv200r003c00

Huawei ≫ S6700 Version-

Huawei ≫ S6700 Firmware Versionv200r005c00

Huawei ≫ S6700 Version-

Huawei ≫ S6700 Firmware Versionv200r005c01

Huawei ≫ S6700 Version-

Huawei ≫ S6700 Firmware Versionv200r005c02

Huawei ≫ S6700 Version-

Huawei ≫ S6700 Firmware Versionv200r007c00

Huawei ≫ S6700 Version-

Huawei ≫ S6700 Firmware Versionv200r008c00

Huawei ≫ S6700 Version-

Huawei ≫ S6700 Firmware Versionv200r009c00

Huawei ≫ S6700 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.2%	0.394

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	7.5	3.9	3.6	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C

CWE-125 Out-of-bounds Read

The product reads data past the end, or before the beginning, of the intended buffer.

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-02-ipv6-en

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2017-17165

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2017-17165

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2017-17165

EUVD