Out-of-bounds

2018-03-0917:29:00

PRIOn knowledge base

www.prio-n.com

5.6 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

59.2%

JSON

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability due to the improper processing of malformed H323 messages. A remote attacker that controls a server could exploit this vulnerability by sending malformed H323 reply messages to a target device. Successful exploit could make the device read out of bounds and probably make a service unavailable.

CPENameOperatorVersion
dp300_firmwareeq500r2c0-v
rp200_firmwareeq500r2c0-v
rp200_firmwareeq600r6c0-v
te30_firmwareeq100r1c10-v
te30_firmwareeq500r2c0-v
te30_firmwareeq600r6c0-v
te40_firmwareeq500r2c0-v
te40_firmwareeq600r6c0-v
te50_firmwareeq500r2c0-v
te50_firmwareeq600r6c0-v

Name	Operator	Version
dp300_firmware	eq	500r2c0-v
rp200_firmware	eq	500r2c0-v
rp200_firmware	eq	600r6c0-v
te30_firmware	eq	100r1c10-v
te30_firmware	eq	500r2c0-v
te30_firmware	eq	600r6c0-v
te40_firmware	eq	500r2c0-v
te40_firmware	eq	600r6c0-v
te50_firmware	eq	500r2c0-v
te50_firmware	eq	600r6c0-v