Out-of-bounds Read Vulnerability in Huawei DP300 and Other Products
CVE-2017-15353

3.7LOW

Key Information:

Vendor: McAfee
Status: Dp300,rp200,rse6500,te30,te40,te50,te60,tx50,vp9660,vieWPoint 8660,vieWPoint 9030,vieWPoint 8660,
Vendor: CVE Published:; 15 February 2018

Summary

The out-of-bounds read vulnerability in various Huawei products allows an attacker who has control over a peer device to send specially crafted messages. Due to insufficient input validation, the exploit can lead to unpredictable behavior of the affected devices, potentially resulting in service disruptions. It is crucial for users of the impacted products to apply the necessary security patches and follow best security practices to safeguard their systems.

Affected Version(s)

DP300,RP200,RSE6500,TE30,TE40,TE50,TE60,TX50,VP9660,ViewPoint 8660,ViewPoint 9030,Viewpoint 8660, DP300 ,V500R002C00 ,RP200 ,V500R002C00 ,V600R006C00 ,RSE6500 ,V500R002C00 ,TE30 ,V100R001C02 ,V100R001C10 ,V500R002C00 ,V600R006C00 ,TE40 ,V500R002C00 ,V600R006C00 ,TE50 ,V500R002C00 ,V600R006C00 ,TE60 ,V100R001C01 ,V100R001C10 ,V500R002C00 ,V600R006C00 ,TX50 ,V500R002C00 ,V600R006C00 ,VP9660 ,V500R002C00 ,V500R002C10 ,ViewPoint 8660 ,V100R008C03 ,ViewPoint 9030 ,V100R011C02 ,V100R011C03 ,Viewpoint 8660 ,V100R008C03

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

3.7

Severity:

LOW

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Feb 15, 2018
Vulnerability Reserved
Oct 14, 2017