Published: 22/12/2017 Updated: 05/01/2018

CVSS v2 Base Score: 7.8 | Impact Score: 6.9 | Exploitability Score: 10

CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9

VMScore: 694

Vector: AV:N/AC:L/Au:N/C:N/I:N/A:C

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei rp200_firmware v600r006c00
huawei rp200_firmware v500r002c00
huawei te30_firmware v600r006c00
huawei te30_firmware v500r002c00
huawei te30_firmware v100r001c10
huawei te40_firmware v600r006c00
huawei te40_firmware v500r002c00
huawei te50_firmware v500r002c00
huawei te50_firmware v600r006c00
huawei te60_firmware v100r001c10
huawei te60_firmware v600r006c00
huawei te60_firmware v500r002c00

CWE-125 http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171101-01-sccpx-en https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-15320

Vulnerability Summary

Vulnerability Trend

References

Vulmon Search

About

Products

Connect