Vulnerability in Cryptographic Algorithm of Huawei DP300 and Other Products
CVE-2017-17167

5.9MEDIUM

Key Information:

Vendor: McAfee
Status: Dp300; Tp3206; VieWPoint 9030
Vendor: CVE Published:; 9 March 2018

What is CVE-2017-17167?

The affected Huawei products contain a vulnerability that arises from the use of a broken or risky cryptographic algorithm within their SSL implementation. This flaw could potentially allow remote unauthenticated attackers to exploit the algorithm using known techniques, leading to the exposure of sensitive information. Organizations using these products are advised to assess their security posture and consider updates or mitigations to safeguard their systems.

Affected Version(s)

DP300; TP3206; ViewPoint 9030 DP300 V500R002C00

DP300; TP3206; ViewPoint 9030 TP3206 V100R002C00

DP300; TP3206; ViewPoint 9030 ViewPoint 9030 V100R011C02

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/103513

vdb-entryx_refsource_BID

CVSS V3.1

Score:

5.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 9, 2018
Vulnerability Reserved
Dec 4, 2017

JSON

McAfee

What is CVE-2017-17167?

Affected Version(s)

References

CVSS V3.1

Timeline