CVE-2017-17300

Huawei S12700 V200R008C00, V200R009C00, S5700 V200R007C00, V200R008C00, V200R009C00, S6700 V200R008C00, V200R009C00, S7700 V200R008C00, V200R009C00, S9700 V200R008C00, V200R009C00 have a numeric errors vulnerability. An unauthenticated, remote attacker may send specific TCP messages with keychain authentication option to the affected products. Due to the improper validation of the messages, it will cause numeric errors when handling the messages. Successful exploit will cause the affected products to reset.
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:huawei:s12700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
OR cpe:2.3:o:huawei:s5700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
OR cpe:2.3:o:huawei:s6700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
OR cpe:2.3:o:huawei:s7700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
OR cpe:2.3:o:huawei:s9700_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r009c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:s9700:-:*:*:*:*:*:*:*

History

21 Nov 2024, 03:17

Type Values Removed Values Added
References () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-router-en - Vendor Advisory () http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-router-en - Vendor Advisory

Information

Published : 2018-02-15 16:29

Updated : 2024-11-21 03:17


NVD link : CVE-2017-17300

Mitre link : CVE-2017-17300

CVE.ORG link : CVE-2017-17300


JSON object : View

Products Affected

huawei

  • s7700_firmware
  • s5700
  • s12700_firmware
  • s6700_firmware
  • s9700_firmware
  • s12700
  • s5700_firmware
  • s7700
  • s6700
  • s9700
CWE
CWE-20

Improper Input Validation