1. Home
  2. CVE Database
  3. CVE-2017-15353
LOW · 3.7

CVE-2017-15353

Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C...

Vulnerability Description

Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C00, TE60, V100R001C01, V100R001C10, V500R002C00, V600R006C00, TX50, V500R002C00, V600R006C00, VP9660, V500R002C00, V500R002C10, ViewPoint 8660, V100R008C03, ViewPoint 9030, V100R011C02, V100R011C03, Viewpoint 8660, V100R008C03 have an out-of-bounds read vulnerability. An attacker has to control the peer device and send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause some service abnormal.

CVSS Score

3.7

LOW

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:L
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
LOW

Affected Products

VendorProductVersions
HuaweiDp300 Firmwarev500r002c00
HuaweiDp300-
HuaweiRp200 Firmwarev500r002c00
HuaweiRp200-
HuaweiRse6500 Firmwarev500r002c00
HuaweiRse6500-
HuaweiTe30 Firmwarev100r001c02
HuaweiTe30-
HuaweiTe40 Firmwarev500r002c00
HuaweiTe40-
HuaweiTe50 Firmwarev500r002c00
HuaweiTe50-
HuaweiTe60 Firmwarev100r001c01
HuaweiTe60-
HuaweiTx50 Firmwarev500r002c00
HuaweiTx50-
HuaweiViewpoint 8660 Firmwarev100r008c03
HuaweiViewpoint 8660-
HuaweiVp9660 Firmwarev500r002c00
HuaweiVp9660-

Related Weaknesses (CWE)

CWE-125

References

FAQ

What is CVE-2017-15353?

CVE-2017-15353 is a vulnerability with a CVSS score of 3.7 (LOW). Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C...

How severe is CVE-2017-15353?

CVE-2017-15353 has been rated LOW with a CVSS base score of 3.7/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-15353?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Dp300 Firmware, Huawei Dp300, Huawei Rp200 Firmware, Huawei Rp200, Huawei Rse6500 Firmware.