Recent Vulnerabilities Research Posts Trends Blog About Contact

Published: 05/03/2018 Updated: 03/10/2019

CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9

CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8

VMScore: 187

Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

XML parser in Huawei DP300 V500R002C00; RP200 V500R002C00SPC200; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has a DoS vulnerability. Due to not check the specially XML file enough an authenticated local attacker may craft specific XML files to the affected products and parse this file which cause to null pointer accessing and result in DoS attacks.

Vulnerable Product	Search on Vulmon	Subscribe to Product
huawei dp300_firmware v500r002c00
huawei rp200_firmware v500r002c00spc200
huawei rp200_firmware v600r006c00
huawei te30_firmware v100r001c10
huawei te30_firmware v500r002c00
huawei te30_firmware v600r006c00
huawei te40_firmware v500r002c00
huawei te40_firmware v600r006c00
huawei te50_firmware v600r006c00
huawei te50_firmware v500r002c00
huawei te60_firmware v100r001c10
huawei te60_firmware v600r006c00
huawei te60_firmware v500r002c00

CWE-476 http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171206-02-xml-en https://nvd.nist.gov

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2017-17134

Vulnerability Summary

References

Vulmon Search

About

Products

Connect