CVE-2017-8163 Information
Description
AR120-S with software V200R006C10 V200R007C00 V200R008C20 V200R008C30AR1200 with software V200R006C10 V200R006C13 V200R007C00 V200R007C01 V200R007C02 V200R008C20 V200R008C30AR1200-S with software V200R006C10 V200R007C00 V200R008C20 V200R008C30AR150 with software V200R006C10 V200R007C00 V200R007C01 V200R007C02 V200R008C20 V200R008C30AR150-S with software V200R006C10 V200R007C00 V200R008C20 V200R008C30AR160 with software V200R006C10 V200R006C12 V200R007C00 V200R007C01 V200R007C02 V200R008C20 V200R008C30AR200 with software V200R006C10 V200R007C00 V200R007C01 V200R008C20 V200R008C30AR200-S with software V200R006C10 V200R007C00 V200R008C20 V200R008C30AR2200 with software V200R006C10 V200R006C13 V200R006C16PWE V200R007C00 V200R007C01 V200R007C02 V200R008C20 V200R008C30AR2200-S with software V200R006C10 V200R007C00 V200R008C20 V200R008C30AR3200 with software V200R006C10 V200R006C11 V200R007C00 V200R007C01 V200R007C02 V200R008C00 V200R008C10 V200R008C20 V200R008C30AR510 with software V200R006C10 V200R006C12 V200R006C13 V200R006C15 V200R006C16 V200R006C17 V200R007C00 V200R008C20 V200R008C30NetEngine16EX with software V200R006C10 V200R007C00 V200R008C20 V200R008C30SMC2.0 with software V100R003C10 V100R005C00 V500R002C00 V600R006C00SRG1300 with software V200R006C10 V200R007C00 V200R007C02 V200R008C20 V200R008C30SRG2300 with software V200R006C10 V200R007C00 V200R007C02 V200R008C20 V200R008C30SRG3300 with software V200R006C10 V200R007C00 V200R008C20 V200R008C30 have an out-of-bounds read vulnerability. Due to insufficient input validation an authenticated remote attacker could send specially crafted message to the target device.Successful exploit of the vulnerability could cause out-of-bounds read and system crash.
CVSS Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Reference
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171018-01-h323-en
Attack Complexity
LOW
Privileges Required
LOW
User Interaction Required
LOW
Scope
NONE
Confidentiality Impact
UNCHANGED
Integrity Impact
NONE
Availability Impact
NONE
Base Score
HIGH
Base Severity
6.5
Share on: