Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
7.5
CVSSv3

CVE-2017-17299

Published: 15/02/2018 Updated: 09/03/2018
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
CVSS v3 Base Score: 7.5 | Impact Score: 3.6 | Exploitability Score: 3.9
VMScore: 445
Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Subscribe to Ar120-s Firmware

Vulnerability Summary

Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C02, AR150-S V200R006C10, V200R007C00, AR160 V200R006C10, V200R006C12, V200R007C00S, V200R007C02, AR200 V200R006C10, V200R007C00, AR200-S V200R006C10, V200R007C00, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C02, AR2200-S V200R006C10, V200R007C00, V200R008C20, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C02, AR3600 V200R006C10, V200R007C00, AR510 V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, IPS Module V500R001C30, NIP6300 V500R001C30, NetEngine16EX V200R006C10, V200R007C00 have an insufficient input validation vulnerability. An unauthenticated, remote attacker may send crafted IKE V2 messages to the affected products. Due to the insufficient validation of the messages, successful exploit will cause invalid memory access and result in a denial of service on the affected products.

Vulnerable Product Search on Vulmon Subscribe to Product

huawei ar120-s_firmware v200r006c10

huawei ar120-s_firmware v200r007c00

huawei ar1200_firmware v200r006c13

huawei ar1200_firmware v200r007c02

huawei ar1200_firmware v200r006c10

huawei ar1200_firmware v200r007c00

huawei ar1200-s_firmware v200r006c10

huawei ar1200-s_firmware v200r008c20

huawei ar1200-s_firmware v200r007c00

huawei ar150_firmware v200r006c10

huawei ar150_firmware v200r007c02

huawei ar150_firmware v200r007c00

huawei ar150-s_firmware v200r006c10

huawei ar150-s_firmware v200r007c00

huawei ar160_firmware v200r006c10

huawei ar160_firmware v200r006c12

huawei ar160_firmware v200r007c00s

huawei ar160_firmware v200r007c02

huawei ar200_firmware v200r006c10

huawei ar200_firmware v200r007c00

huawei ar200-s_firmware v200r006c10

huawei ar200-s_firmware v200r007c00

huawei ar2200_firmware v200r006c13

huawei ar2200_firmware v200r007c00

huawei ar2200_firmware v200r006c10

huawei ar2200_firmware v200r006c16

huawei ar2200_firmware v200r007c02

huawei ar2200-s_firmware v200r007c00

huawei ar2200-s_firmware v200r006c10

huawei ar2200-s_firmware v200r008c20

huawei ar3200_firmware v200r007c02

huawei ar3200_firmware v200r006c10

huawei ar3200_firmware v200r006c11

huawei ar3200_firmware v200r007c00

huawei ar3600_firmware v200r006c10

huawei ar3600_firmware v200r007c00

huawei ar510_firmware v200r007c00

huawei ar510_firmware v200r006c12

huawei ar510_firmware v200r006c13

huawei ar510_firmware v200r006c15

huawei ar510_firmware v200r006c16

huawei ar510_firmware v200r006c17

huawei ips_module_firmware v500r001c30

huawei nip6300_firmware v500r001c30

huawei netengine16ex_firmware v200r007c00

huawei netengine16ex_firmware v200r006c10

References

CWE-20http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-ike-enhttps://nvd.nist.gov
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761command injectionCVE-2024-3676IDORCVE-2024-30039CVE-2024-32113CVE-2024-30049CVE-2024-4776SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook