Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted packets to the affected device to exploit these vulnerabilities. Successful exploit the vulnerability could lead to device deny of service.
References
Link | Resource |
---|---|
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180813-01-Bleichenbacher-en | Vendor Advisory |
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180813-01-Bleichenbacher-en | Vendor Advisory |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
History
21 Nov 2024, 03:17
Type | Values Removed | Values Added |
---|---|---|
References | () https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180813-01-Bleichenbacher-en - Vendor Advisory |
Information
Published : 2018-08-21 13:29
Updated : 2024-11-21 03:17
NVD link : CVE-2017-17312
Mitre link : CVE-2017-17312
CVE.ORG link : CVE-2017-17312
JSON object : View
Products Affected
huawei
- usg2220bsr_firmware
- usg2205bsr
- usg5150bsr_firmware
- usg5150bsr
- usg5120bsr
- usg2220bsr
- usg2205bsr_firmware
- usg5120bsr_firmware
CWE
CWE-20
Improper Input Validation