CVE-2017-17135

PEM module of Huawei DP300 V500R002C00; IPS Module V500R001C00; V500R001C30; NGFW Module V500R001C00; V500R002C00; NIP6300 V500R001C00; V500R001C30; NIP6600 V500R001C00; V500R001C30; RP200 V500R002C00; V600R006C00; S12700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; S1700 V200R006C10; V200R009C00; V200R010C00; S2700 V200R006C10; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S5700 V200R006C00; V200R007C00; V200R008C00; V200R009C00; V200R010C00; S6700 V200R008C00; V200R009C00; V200R010C00; S7700 V200R007C00; V200R008C00; V200R009C00; V200R010C00; S9700 V200R007C00; V200R007C01; V200R008C00; V200R009C00; V200R010C00; Secospace USG6300 V500R001C00; V500R001C30; Secospace USG6500 V500R001C00; V500R001C30; Secospace USG6600 V500R001C00; V500R001C30S; TE30 V100R001C02; V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C01; V100R001C10; V500R002C00; V600R006C00; TP3106 V100R002C00; TP3206 V100R002C00; V100R002C10; USG9500 V500R001C00; V500R001C30; ViewPoint 9030 V100R011C02; V100R011C03 has a null pointer reference vulnerability due to insufficient verification. An authenticated local attacker calls PEM decoder with special parameter which could cause a denial of service.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:huawei:dp300_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:dp300:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:huawei:ips_module_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:ips_module_firmware:v500r001c30:*:*:*:*:*:*:*
cpe:2.3:h:huawei:ips_module:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:o:huawei:ngfw_module_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:ngfw_module:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:o:huawei:nip6300_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:nip6300_firmware:v500r001c30:*:*:*:*:*:*:*
cpe:2.3:h:huawei:nip6300:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:o:huawei:nip6600_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:nip6600_firmware:v500r001c30:*:*:*:*:*:*:*
cpe:2.3:h:huawei:nip6600:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
OR cpe:2.3:o:huawei:rp200_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:rp200_firmware:v600r006c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:rp200:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
OR cpe:2.3:o:huawei:s12700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r007c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
OR cpe:2.3:o:huawei:s1700_firmware:v200r006c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s1700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s1700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s1700:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
OR cpe:2.3:o:huawei:s2700_firmware:v200r006c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s2700:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
OR cpe:2.3:o:huawei:s5700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
OR cpe:2.3:o:huawei:s6700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
OR cpe:2.3:o:huawei:s7700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
OR cpe:2.3:o:huawei:s9700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r007c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r010c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s9700:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
OR cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30:*:*:*:*:*:*:*
cpe:2.3:h:huawei:secospace_usg6300:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
OR cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30:*:*:*:*:*:*:*
cpe:2.3:h:huawei:secospace_usg6500:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
OR cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30s:*:*:*:*:*:*:*
cpe:2.3:h:huawei:secospace_usg6600:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
OR cpe:2.3:o:huawei:te30_firmware:v100r001c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te30_firmware:v100r001c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te30_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te30_firmware:v600r006c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:te30:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
OR cpe:2.3:o:huawei:te40_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te40_firmware:v600r006c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:te40:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
OR cpe:2.3:o:huawei:te50_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te50_firmware:v600r006c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:te50:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
OR cpe:2.3:o:huawei:te60_firmware:v100r001c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te60_firmware:v100r001c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te60_firmware:v500r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:te60_firmware:v600r006c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:te60:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:huawei:tp3106_firmware:v100r002c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:tp3106:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
OR cpe:2.3:o:huawei:tp3206_firmware:v100r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:tp3206_firmware:v100r002c10:*:*:*:*:*:*:*
cpe:2.3:h:huawei:tp3206:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
OR cpe:2.3:o:huawei:usg9500_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:usg9500_firmware:v500r001c30:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg9500:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
OR cpe:2.3:o:huawei:viewpoint_9030_firmware:v100r011c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:viewpoint_9030_firmware:v100r011c03:*:*:*:*:*:*:*
cpe:2.3:h:huawei:viewpoint_9030:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:17

Type Values Removed Values Added
References () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-pem-en - Vendor Advisory () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-pem-en - Vendor Advisory

Information

Published : 2018-03-05 19:29

Updated : 2024-11-21 03:17


NVD link : CVE-2017-17135

Mitre link : CVE-2017-17135

CVE.ORG link : CVE-2017-17135


JSON object : View

Products Affected

huawei

  • secospace_usg6300
  • te40
  • s2700_firmware
  • secospace_usg6300_firmware
  • tp3106_firmware
  • te30
  • dp300_firmware
  • te30_firmware
  • nip6300_firmware
  • s5700_firmware
  • usg9500_firmware
  • te50
  • secospace_usg6500
  • te50_firmware
  • viewpoint_9030
  • secospace_usg6600
  • ngfw_module_firmware
  • tp3206
  • viewpoint_9030_firmware
  • s6700_firmware
  • secospace_usg6600_firmware
  • s1700
  • nip6300
  • s12700
  • ips_module_firmware
  • s6700
  • te40_firmware
  • dp300
  • ips_module
  • s5700
  • secospace_usg6500_firmware
  • nip6600_firmware
  • s12700_firmware
  • s1700_firmware
  • s9700_firmware
  • usg9500
  • s2700
  • s7700_firmware
  • rp200_firmware
  • te60
  • ngfw_module
  • nip6600
  • tp3206_firmware
  • rp200
  • tp3106
  • s7700
  • te60_firmware
  • s9700
CWE
CWE-476

NULL Pointer Dereference