1. Home
  2. CVE Database
  3. CVE-2017-2690
MEDIUM · 5.5

CVE-2017-2690

SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200...

Vulnerability Description

SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200R003C30,eSpace U1960 with software V200R003C20, V200R003C30,eSpace U1980 with software V200R003C20, V200R003C30,eSpace U1981 with software V200R003C20 and V200R003C30 have an denial of service (DoS) vulnerability, which allow an attacker with specific permission to craft a file containing malicious data and upload it to the device to exhaust memory, causing a DoS condition.

CVSS Score

5.5

MEDIUM

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
NONE
Integrity
NONE
Availability
HIGH

Affected Products

VendorProductVersions
HuaweiSoftco Firmwarev200r003c20
HuaweiSoftco-
HuaweiEspace U1910 Firmwarev200r003c00
HuaweiEspace U1910-
HuaweiEspace U1911 Firmwarev200r003c20
HuaweiEspace U1911-
HuaweiEspace U1930 Firmwarev200r003c20
HuaweiEspace U1930-
HuaweiEspace U1960 Firmwarev200r003c20
HuaweiEspace U1960-
HuaweiEspace U1980 Firmwarev200r003c20
HuaweiEspace U1980-
HuaweiEspace U1981 Firmwarev200r003c20
HuaweiEspace U1981-

Related Weaknesses (CWE)

CWE-400

References

FAQ

What is CVE-2017-2690?

CVE-2017-2690 is a vulnerability with a CVSS score of 5.5 (MEDIUM). SoftCo with software V200R003C20,eSpace U1910 with software V200R003C00, V200R003C20 and V200R003C30,eSpace U1911 with software V200R003C20, V200R003C30,eSpace U1930 with software V200R003C20 and V200...

How severe is CVE-2017-2690?

CVE-2017-2690 has been rated MEDIUM with a CVSS base score of 5.5/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2017-2690?

Check the references section above for vendor advisories and patch information. Affected products include: Huawei Softco Firmware, Huawei Softco, Huawei Espace U1910 Firmware, Huawei Espace U1910, Huawei Espace U1911 Firmware.