Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-17165
HistoryFeb 15, 2018 - 4:29 p.m.

CVE-2017-17165

2018-02-1516:29:02
CWE-125
[email protected]
web.nvd.nist.gov

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

44.8%

JSON

IPv6 function in Huawei Quidway S2700 V200R003C00SPC300, Quidway S5300 V200R003C00SPC300, Quidway S5700 V200R003C00SPC300, S2300 V200R003C00, V200R003C00SPC300T, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S2700 V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S5300 V200R003C00, V200R003C00SPC300T, V200R003C00SPC600, V200R003C02, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R005C05, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S5700 V200R003C00, V200R003C00SPC316T, V200R003C00SPC600, V200R003C02, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00, V200R009C00, S600-E V200R008C00, V200R009C00, S6300 V200R003C00, V200R005C00, V200R007C00, V200R008C00, V200R009C00, S6700 V200R003C00, V200R005C00, V200R005C01, V200R005C02, V200R007C00, V200R008C00, V200R009C00 has an out-of-bounds read vulnerability. An unauthenticated attacker may send crafted malformed IPv6 packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause device to reset.

Affected configurations

NVD
Node
huaweiquidway_s2700_firmwareMatchv200r003c00spc300
AND
huaweiquidway_s2700Match-
Node
huaweiquidway_s5300_firmwareMatchv200r003c00spc300
AND
huaweiquidway_s5300Match-
Node
huaweiquidway_s5700_firmwareMatchv200r003c00spc300
AND
huaweiquidway_s5700Match-
Node
huaweis2300_firmwareMatchv200r003c00
OR
huaweis2300_firmwareMatchv200r003c00spc300t
OR
huaweis2300_firmwareMatchv200r005c00
OR
huaweis2300_firmwareMatchv200r006c00
OR
huaweis2300_firmwareMatchv200r007c00
OR
huaweis2300_firmwareMatchv200r008c00
OR
huaweis2300_firmwareMatchv200r009c00
AND
huaweis2300Match-
Node
huaweis2700_firmwareMatchv200r005c00
OR
huaweis2700_firmwareMatchv200r006c00
OR
huaweis2700_firmwareMatchv200r007c00
OR
huaweis2700_firmwareMatchv200r008c00
OR
huaweis2700_firmwareMatchv200r009c00
AND
huaweis2700Match-
Node
huaweis5300_firmwareMatchv200r003c00
OR
huaweis5300_firmwareMatchv200r003c00spc300t
OR
huaweis5300_firmwareMatchv200r003c00spc600
OR
huaweis5300_firmwareMatchv200r003c02
OR
huaweis5300_firmwareMatchv200r005c00
OR
huaweis5300_firmwareMatchv200r005c01
OR
huaweis5300_firmwareMatchv200r005c02
OR
huaweis5300_firmwareMatchv200r005c03
OR
huaweis5300_firmwareMatchv200r005c05
OR
huaweis5300_firmwareMatchv200r006c00
OR
huaweis5300_firmwareMatchv200r007c00
OR
huaweis5300_firmwareMatchv200r008c00
OR
huaweis5300_firmwareMatchv200r009c00
AND
huaweis5300Match-
Node
huaweis5700_firmwareMatchv200r003c00
OR
huaweis5700_firmwareMatchv200r003c00spc316t
OR
huaweis5700_firmwareMatchv200r003c00spc600
OR
huaweis5700_firmwareMatchv200r003c02
OR
huaweis5700_firmwareMatchv200r005c00
OR
huaweis5700_firmwareMatchv200r005c01
OR
huaweis5700_firmwareMatchv200r005c02
OR
huaweis5700_firmwareMatchv200r005c03
OR
huaweis5700_firmwareMatchv200r006c00
OR
huaweis5700_firmwareMatchv200r007c00
OR
huaweis5700_firmwareMatchv200r008c00
OR
huaweis5700_firmwareMatchv200r009c00
AND
huaweis5700Match-
Node
huaweis600-e_firmwareMatchv200r008c00
OR
huaweis600-e_firmwareMatchv200r009c00
AND
huaweis600-eMatch-
Node
huaweis6300_firmwareMatchv200r003c00
OR
huaweis6300_firmwareMatchv200r005c00
OR
huaweis6300_firmwareMatchv200r007c00
OR
huaweis6300_firmwareMatchv200r008c00
OR
huaweis6300_firmwareMatchv200r009c00
AND
huaweis6300Match-
Node
huaweis6700_firmwareMatchv200r003c00
OR
huaweis6700_firmwareMatchv200r005c00
OR
huaweis6700_firmwareMatchv200r005c01
OR
huaweis6700_firmwareMatchv200r005c02
OR
huaweis6700_firmwareMatchv200r007c00
OR
huaweis6700_firmwareMatchv200r008c00
OR
huaweis6700_firmwareMatchv200r009c00
AND
huaweis6700Match-

Related

huawei 1
cve 1
cvelist 1
openvas 1
prion 1
huawei
huawei
Security Advisory - IPv6 Out-of-bounds Read Vulnerability in Huawei Products
2017-12-13 00:00:00
cve
cve
CVE-2017-17165
2018-02-15 16:29:02
cvelist
cvelist
CVE-2017-17165
2018-02-15 16:00:00
openvas
openvas
Huawei Data Communication: IPv6 Memory Overflow Vulnerability in Huawei Products (huawei-sa-20171213-01-ipv6)
2020-05-27 00:00:00
prion
prion
Out-of-bounds
2018-02-15 16:29:00

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

7.5 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

0.001 Low

EPSS

Percentile

44.8%

JSON
Related for NVD:CVE-2017-17165
huawei1cve1cvelist1openvas1prion1