Information Disclosure Vulnerability in Huawei DP300, RP200, TE30, TE40, TE50, and TE60 Products
CVE-2017-17303

4.9MEDIUM

Key Information:

Vendor: McAfee
Status: Dp300; Rp200; Te30; Te40; Te50; Te60
Vendor: CVE Published:; 9 March 2018

What is CVE-2017-17303?

This vulnerability affects multiple Huawei products, exposing sensitive information through the CIDAM protocol. An authenticated remote attacker can exploit this flaw to intercept messages, leading to unauthorized access to confidential data. The affected versions of DP300, RP200, and TE series devices are susceptible, significantly increasing the risk of information leakage within secure environments. Users are advised to review their configurations and apply necessary updates to mitigate the potential impact.

Affected Version(s)

DP300; RP200; TE30; TE40; TE50; TE60 DP300 V500R002C00

DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B010

DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B011

References

http://www.huawei.com/en/psirt/security-advisories/huawei...

x_refsource_CONFIRM

CVSS V3.1

Score:

4.9

Severity:

MEDIUM

Confidentiality:

High

Integrity:

None

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

High

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Mar 9, 2018
Vulnerability Reserved
Dec 4, 2017

McAfee

What is CVE-2017-17303?

Affected Version(s)

References

CVSS V3.1

Timeline