CVE-2017-15324

Huawei S5700 and S6700 with software of V200R005C00 have a DoS vulnerability due to insufficient validation of the Network Quality Analysis (NQA) packets. A remote attacker could exploit this vulnerability by sending malformed NQA packets to the target device. Successful exploitation could make the device restart.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:huawei:s5700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:huawei:s6700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:14

Type Values Removed Values Added
References () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-nqa-en - Vendor Advisory () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-nqa-en - Vendor Advisory

Information

Published : 2017-12-22 17:29

Updated : 2024-11-21 03:14


NVD link : CVE-2017-15324

Mitre link : CVE-2017-15324

CVE.ORG link : CVE-2017-15324


JSON object : View

Products Affected

huawei

  • s5700
  • s5700_firmware
  • s6700_firmware
  • s6700
CWE
CWE-20

Improper Input Validation