5.3 - CVE-2017-17297

Executive Summary

Informations
Name	CVE-2017-17297	First vendor Publication	2018-02-15
Vendor	Cve	Last vendor Modification	2018-03-09

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
Overall CVSS Score	5.3
Base Score	5.3	Environmental Score	5.3
impact SubScore	1.4	Temporal Score	5.3
Exploitabality Sub Score	3.9

Attack Vector	Network	Attack Complexity	Low
Privileges Required	None	User Interaction	None
Scope	Unchanged	Confidentiality Impact	None
Integrity Impact	None	Availability Impact	Low
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:L/Au:N/C:N/I:N/A:P)
Cvss Base Score	5	Attack Range	Network
Cvss Impact Score	2.9	Attack Complexity	Low
Cvss Expoit Score	10	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, IPS Module V100R001C10, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, NGFW Module V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R002C00, V500R002C10, NIP6300 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6600 V500R001C00, V500R001C20, V500R001C30, V500R001C50, NIP6800 V500R001C50, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, RSE6500 V500R002C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, SVN5600 V200R003C00, V200R003C10, SVN5800 V200R003C10, SVN5800-C V200R003C00, V200R003C10, SeMG9811 V300R001C01, Secospace USG6300 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6500 V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, Secospace USG6600 V100R001C00, V100R001C10, V100R001C20, V100R001C30, V500R001C00, V500R001C20, V500R001C30, V500R001C50, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10, USG9500 V500R001C00, V500R001C20, V500R001C30, V500R001C50, USG9520 V300R001C01, V300R001C20, USG9560 V300R001C01, V300R001C20, USG9580 V300R001C01, V300R001C20, ViewPoint 9030 V100R011C02, V100R011C03, eSpace U1981 V200R003C20SPC900, V200R003C30SPC200 have a buffer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted SIP packages to the affected products. Due to the insufficient validation of some values for SIP packages, successful exploit may cause services abnormal.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-17297

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-119	Failure to Constrain Operations within the Bounds of a Memory Buffer

CPE : Common Platform Enumeration

Type	Description	Count
Os	Huawei ar120-S Firmware cpe:2.3:o:huawei:ar120-s_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar120-s_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar120-s_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar120-s_firmware:v200r006c10:::::::*	4
Os	Huawei Ar1200 Firmware cpe:2.3:o:huawei:ar1200_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar1200_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar1200_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:ar1200_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar1200_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar1200_firmware:v200r006c13:::::::* cpe:2.3:o:huawei:ar1200_firmware:v200r006c10:::::::*	7
Os	Huawei ar1200-S Firmware cpe:2.3:o:huawei:ar1200-s_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar1200-s_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar1200-s_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar1200-s_firmware:v200r006c10:::::::*	4
Os	Huawei Ar150 Firmware cpe:2.3:o:huawei:ar150_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar150_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar150_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:ar150_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar150_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar150_firmware:v200r006c10:::::::*	6
Os	Huawei ar150-S Firmware cpe:2.3:o:huawei:ar150-s_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar150-s_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar150-s_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar150-s_firmware:v200r006c10:::::::*	4
Os	Huawei Ar160 Firmware cpe:2.3:o:huawei:ar160_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar160_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar160_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:ar160_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar160_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar160_firmware:v200r006c12:::::::* cpe:2.3:o:huawei:ar160_firmware:v200r006c10:::::::*	7
Os	Huawei Ar200 Firmware cpe:2.3:o:huawei:ar200_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar200_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar200_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar200_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar200_firmware:v200r006c10:::::::*	5
Os	Huawei ar200-S Firmware cpe:2.3:o:huawei:ar200-s_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar200-s_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar200-s_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar200-s_firmware:v200r006c10:::::::*	4
Os	Huawei Ar2200 Firmware cpe:2.3:o:huawei:ar2200_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r006c16:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r006c13:::::::* cpe:2.3:o:huawei:ar2200_firmware:v200r006c10:::::::*	8
Os	Huawei ar2200-S Firmware cpe:2.3:o:huawei:ar2200-s_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar2200-s_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar2200-s_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar2200-s_firmware:v200r006c10:::::::*	4
Os	Huawei Ar3200 Firmware cpe:2.3:o:huawei:ar3200_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r008c10:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r008c00:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r006c11:::::::* cpe:2.3:o:huawei:ar3200_firmware:v200r006c10:::::::*	9
Os	Huawei Ar3600 Firmware cpe:2.3:o:huawei:ar3600_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar3600_firmware:v200r007c01:::::::* cpe:2.3:o:huawei:ar3600_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar3600_firmware:v200r006c10:::::::*	4
Os	Huawei Ar510 Firmware cpe:2.3:o:huawei:ar510_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r006c17:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r006c16:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r006c15:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r006c13:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r006c12:::::::* cpe:2.3:o:huawei:ar510_firmware:v200r006c10:::::::*	9
Os	Huawei Dp300 Firmware cpe:2.3:o:huawei:dp300_firmware:v500r002c00:::::::*	1
Os	Huawei Espace U1981 Firmware cpe:2.3:o:huawei:espace_u1981_firmware:v200r003c30spc200:::::::* cpe:2.3:o:huawei:espace_u1981_firmware:v200r003c20spc900:::::::*	2
Os	Huawei Ips Module Firmware cpe:2.3:o:huawei:ips_module_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:ips_module_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:ips_module_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:ips_module_firmware:v500r001c00:::::::* cpe:2.3:o:huawei:ips_module_firmware:v100r001c30:::::::* cpe:2.3:o:huawei:ips_module_firmware:v100r001c10:::::::*	6
Os	Huawei Netengine16Ex Firmware cpe:2.3:o:huawei:netengine16ex_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:netengine16ex_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:netengine16ex_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:netengine16ex_firmware:v200r006c10:::::::*	4
Os	Huawei Ngfw Module Firmware cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c10:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v500r002c00:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v500r001c00:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v100r001c30:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v100r001c20:::::::* cpe:2.3:o:huawei:ngfw_module_firmware:v100r001c10:::::::*	7
Os	Huawei Nip6300 Firmware cpe:2.3:o:huawei:nip6300_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:nip6300_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:nip6300_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:nip6300_firmware:v500r001c00:::::::*	4
Os	Huawei Nip6600 Firmware cpe:2.3:o:huawei:nip6600_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:nip6600_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:nip6600_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:nip6600_firmware:v500r001c00:::::::*	4
Os	Huawei Nip6800 Firmware cpe:2.3:o:huawei:nip6800_firmware:v500r001c50:::::::*	1
Os	Huawei Rp200 Firmware cpe:2.3:o:huawei:rp200_firmware:v600r006c00:::::::* cpe:2.3:o:huawei:rp200_firmware:v500r002c00:::::::*	2
Os	Huawei Rse6500 Firmware cpe:2.3:o:huawei:rse6500_firmware:v500r002c00:::::::*	1
Os	Huawei Secospace Usg6300 Firmware cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v500r001c00:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v100r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v100r001c20:::::::* cpe:2.3:o:huawei:secospace_usg6300_firmware:v100r001c10:::::::*	7
Os	Huawei Secospace Usg6500 Firmware cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v500r001c00:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v100r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v100r001c20:::::::* cpe:2.3:o:huawei:secospace_usg6500_firmware:v100r001c10:::::::*	7
Os	Huawei Secospace Usg6600 Firmware cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c00:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v100r001c30:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v100r001c20:::::::* cpe:2.3:o:huawei:secospace_usg6600_firmware:v100r001c10:::::::*	7
Os	Huawei Semg9811 Firmware cpe:2.3:o:huawei:semg9811_firmware:v300r001c01:::::::*	1
Os	Huawei Srg1300 Firmware cpe:2.3:o:huawei:srg1300_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:srg1300_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:srg1300_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:srg1300_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:srg1300_firmware:v200r006c10:::::::*	5
Os	Huawei Srg2300 Firmware cpe:2.3:o:huawei:srg2300_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:srg2300_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:srg2300_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:srg2300_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:srg2300_firmware:v200r006c10:::::::*	5
Os	Huawei Srg3300 Firmware cpe:2.3:o:huawei:srg3300_firmware:v200r008c30:::::::* cpe:2.3:o:huawei:srg3300_firmware:v200r008c20:::::::* cpe:2.3:o:huawei:srg3300_firmware:v200r007c02:::::::* cpe:2.3:o:huawei:srg3300_firmware:v200r007c00:::::::* cpe:2.3:o:huawei:srg3300_firmware:v200r006c10:::::::*	5
Os	Huawei Svn5600 Firmware cpe:2.3:o:huawei:svn5600_firmware:v200r003c10:::::::* cpe:2.3:o:huawei:svn5600_firmware:v200r003c00:::::::*	2
Os	Huawei Svn5800 Firmware cpe:2.3:o:huawei:svn5800_firmware:v200r003c10:::::::*	1
Os	Huawei svn5800-C Firmware cpe:2.3:o:huawei:svn5800-c_firmware:v200r003c10:::::::* cpe:2.3:o:huawei:svn5800-c_firmware:v200r003c00:::::::*	2
Os	Huawei Te30 Firmware cpe:2.3:o:huawei:te30_firmware:v600r006c00:::::::* cpe:2.3:o:huawei:te30_firmware:v500r002c00:::::::* cpe:2.3:o:huawei:te30_firmware:v100r001c10:::::::* cpe:2.3:o:huawei:te30_firmware:v100r001c02:::::::*	4
Os	Huawei Te40 Firmware cpe:2.3:o:huawei:te40_firmware:v600r006c00:::::::* cpe:2.3:o:huawei:te40_firmware:v500r002c00:::::::*	2
Os	Huawei Te50 Firmware cpe:2.3:o:huawei:te50_firmware:v600r006c00:::::::* cpe:2.3:o:huawei:te50_firmware:v500r002c00:::::::*	2
Os	Huawei Tp3106 Firmware cpe:2.3:o:huawei:tp3106_firmware:v100r002c00:::::::*	1
Os	Huawei Tp3206 Firmware cpe:2.3:o:huawei:tp3206_firmware:v100r002c10:::::::* cpe:2.3:o:huawei:tp3206_firmware:v100r002c00:::::::*	2
Os	Huawei Usg9500 Firmware cpe:2.3:o:huawei:usg9500_firmware:v500r001c50:::::::* cpe:2.3:o:huawei:usg9500_firmware:v500r001c30:::::::* cpe:2.3:o:huawei:usg9500_firmware:v500r001c20:::::::* cpe:2.3:o:huawei:usg9500_firmware:v500r001c00:::::::*	4
Os	Huawei Usg9520 Firmware cpe:2.3:o:huawei:usg9520_firmware:v300r001c20:::::::* cpe:2.3:o:huawei:usg9520_firmware:v300r001c01:::::::*	2
Os	Huawei Usg9560 Firmware cpe:2.3:o:huawei:usg9560_firmware:v300r001c20:::::::* cpe:2.3:o:huawei:usg9560_firmware:v300r001c01:::::::*	2
Os	Huawei Usg9580 Firmware cpe:2.3:o:huawei:usg9580_firmware:v300r001c20:::::::* cpe:2.3:o:huawei:usg9580_firmware:v300r001c01:::::::*	2
Os	Huawei Viewpoint 9030 Firmware cpe:2.3:o:huawei:viewpoint_9030_firmware:v100r011c03:::::::* cpe:2.3:o:huawei:viewpoint_9030_firmware:v100r011c02:::::::*	2

Sources (Detail)

Source	Url
CONFIRM	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-buff...

Alert History

If you want to see full details history, please login or register.

Date	Informations
2020-05-23 00:58:16	Multiple Updates
2018-03-09 17:19:17	Multiple Updates
2018-02-15 21:21:07	First insertion

Type	Count
CWE ID(s)	1
CPE ID(s)	172
Sources(s)	1

5.3 - CVE-2017-17297

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU