Numeric Errors Vulnerability in Huawei Communication Products
CVE-2017-17315

5.3MEDIUM

Key Information:

Vendor

McAfee
Status
Dp300; Rp200; Te30; Te40; Te50; Te60
Vendor
CVE Published:
24 May 2018

What is CVE-2017-17315?

A vulnerability exists in certain Huawei communication products allowing unauthenticated, remote attackers to send specially crafted SCCP messages. The flaw stems from inadequate validation of incoming messages, resulting in numeric errors during processing. Successful exploitation may lead to abnormal service behavior, potentially impacting system reliability and security.

Affected Version(s)

DP300; RP200; TE30; TE40; TE50; TE60 DP300 V500R002C00

DP300; RP200; TE30; TE40; TE50; TE60 RP200 V600R006C00

DP300; RP200; TE30; TE40; TE50; TE60 TE30 V100R001C10

References

http://www.huawei.com/en/psirt/security-advisories/huawei...
x_refsource_CONFIRM

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.
CVE-2017-17315 : Numeric Errors Vulnerability in Huawei Communication Products