Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-2690
HistoryNov 22, 2017 - 7:29 p.m.

CVE-2017-2690

2017-11-2219:29:00
CWE-400
[email protected]
web.nvd.nist.gov

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON

SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C20, V200R003C30,eSpace U1981 with software V200R003C20 and V200R003C30 have an denial of service (DoS) vulnerability, which allow an attacker with specific permission to craft a file containing malicious data and upload it to the device to exhaust memory, causing a DoS condition.

Affected configurations

NVD
Node
huaweisoftcoMatch-
AND
huaweisoftco_firmwareMatchv200r003c20
Node
huaweiespace_u1910Match-
AND
huaweiespace_u1910_firmwareMatchv200r003c00
OR
huaweiespace_u1910_firmwareMatchv200r003c20
OR
huaweiespace_u1910_firmwareMatchv200r003c30
Node
huaweiespace_u1911Match-
AND
huaweiespace_u1911_firmwareMatchv200r003c20
OR
huaweiespace_u1911_firmwareMatchv200r003c30
Node
huaweiespace_u1930Match-
AND
huaweiespace_u1930_firmwareMatchv200r003c20
OR
huaweiespace_u1930_firmwareMatchv200r003c30
Node
huaweiespace_u1960Match-
AND
huaweiespace_u1960_firmwareMatchv200r003c20
OR
huaweiespace_u1960_firmwareMatchv200r003c30
Node
huaweiespace_u1980Match-
AND
huaweiespace_u1980_firmwareMatchv200r003c20
OR
huaweiespace_u1980_firmwareMatchv200r003c30
Node
huaweiespace_u1981Match-
AND
huaweiespace_u1981_firmwareMatchv200r003c20
OR
huaweiespace_u1981_firmwareMatchv200r003c30

Related

cvelist 1
cve 1
prion 1
huawei 1
cvelist
cvelist
CVE-2017-2690
2017-11-15 00:00:00
cve
cve
CVE-2017-2690
2017-11-22 19:29:00
prion
prion
Design/Logic Flaw
2017-11-22 19:29:00
huawei
huawei
Security Advisory - DoS Vulnerability in Multiple Huawei Products
2017-01-11 00:00:00

4.9 Medium

CVSS2

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:L/AC:L/Au:N/C:N/I:N/A:C

5.5 Medium

CVSS3

Attack Vector

LOCAL

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

0.0004 Low

EPSS

Percentile

12.8%

JSON
Related for NVD:CVE-2017-2690
cvelist1cve1prion1huawei1