1. Home
  2. CVE Database
  3. CVE-2017-17151
MEDIUM · 5.9

CVE-2017-17151

Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, ...

Vulnerability Description

Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, TE40, TE50, TE60, TP3106, TP3206, ViewPoint 8660, and ViewPoint 9030 have an insufficient validation vulnerability. Since packet validation is insufficient, an unauthenticated attacker may send special H323 packets to exploit the vulnerability. Successful exploit could allow the attacker to send malicious packets and result in DOS attacks.

CVSS Score

5.9

MEDIUM

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiAr100 Firmwarev200r008c20spc700
HuaweiAr100-
HuaweiAr100-S Firmwarev200r007c00spca00
HuaweiAr100-S-
HuaweiAr110-S Firmwarev200r007c00spc600
HuaweiAr110-S-
HuaweiAr120 Firmwarev200r006c10
HuaweiAr120-
HuaweiAr120-S Firmwarev200r006c10
HuaweiAr120-S-
HuaweiAr1200 Firmwarev200r006c10
HuaweiAr1200-
HuaweiAr1200-S Firmwarev200r006c10
HuaweiAr1200-S-
HuaweiAr150 Firmwarev200r006c10
HuaweiAr150-
HuaweiAr150-S Firmwarev200r006c10spc300
HuaweiAr150-S-
HuaweiAr160 Firmwarev200r006c10
HuaweiAr160-

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2017-17151?

CVE-2017-17151 is a vulnerability with a CVSS score of 5.9 (MEDIUM). Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, ...

How severe is CVE-2017-17151?

CVE-2017-17151 has been rated MEDIUM with a CVSS base score of 5.9/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-17151?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Ar100 Firmware, Huawei Ar100, Huawei Ar100-S Firmware, Huawei Ar100-S, Huawei Ar110-S Firmware.