Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2017-17315

Huawei DP300 V500R002C00; RP200 V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specially crafted SCCP messages to the affected products. Due to the improper validation of the messages, it will cause numeric errors when handling the messages. Successful exploit will cause some services abnormal.

Published

2018-05-24T14:29:00.297

Last Modified

2024-11-21T03:17:49.257

Status

Modified

Source

[email protected]

Severity

CVSSv3.0: 5.3 (MEDIUM)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:P

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: PARTIAL
Exploitability Score

10.0

Impact Score

2.9

Weaknesses
  • Type: Primary
    CWE-20
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System huawei dp300_firmware v500r002c00 Yes
Hardware huawei dp300 - No
Operating System huawei rp200_firmware v600r006c00 Yes
Hardware huawei rp200 - No
Operating System huawei te30_firmware v100r001c10 Yes
Operating System huawei te30_firmware v500r002c00 Yes
Operating System huawei te30_firmware v600r006c00 Yes
Hardware huawei te30 - No
Operating System huawei te40_firmware v500r002c00 Yes
Operating System huawei te40_firmware v600r006c00 Yes
Hardware huawei te40 - No
Operating System huawei te50_firmware v500r002c00 Yes
Operating System huawei te50_firmware v600r006c00 Yes
Hardware huawei te50 - No
Operating System huawei te60_firmware v100r001c10 Yes
Operating System huawei te60_firmware v500r002c00 Yes
Operating System huawei te60_firmware v600r006c00 Yes
Hardware huawei te60 - No
References