What is the severity of CVE-2017-15318?

CVE-2017-15318 is classified as a medium severity vulnerability due to potential exploitation resulting from an out-of-bounds read.

How do I fix CVE-2017-15318?

To fix CVE-2017-15318, upgrade the affected Huawei devices to the latest firmware version provided by Huawei.

What types of devices are affected by CVE-2017-15318?

CVE-2017-15318 affects several Huawei products including the RP200 and TE series firmware versions specified in the vulnerability description.

Can CVE-2017-15318 be exploited remotely?

Yes, CVE-2017-15318 can be exploited remotely due to insufficient input validation in the affected Huawei firmware.

What are the implications of CVE-2017-15318 on my network security?

Exploitation of CVE-2017-15318 could lead to unauthorized access or data leakage, posing a risk to network security.

Vulnerability/
CVE-2017-15318

high

7.8

CWE

125 20

1/11/2017

5/8/2024

CVE-2017-15318: Input Validation

First published: Wed Nov 01 2017(Updated: )

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

Credit: psirt@huawei.com

Affected Software	Affected Version	How to fix
Huawei RP200 Firmware	=v500r002c00
Huawei RP200 Firmware	=v600r006c00
Huawei RP200 Firmware
Huawei TE30 Firmware	=v100r001c10
Huawei TE30 Firmware	=v500r002c00
Huawei TE30 Firmware	=v600r006c00
Huawei TE30 Firmware
Huawei TE40	=v500r002c00
Huawei TE40	=v600r006c00
Huawei TE40
Huawei TE50	=v500r002c00
Huawei TE50	=v600r006c00
Huawei TE50 firmware
Huawei TE60 Firmware	=v100r001c10
Huawei TE60 Firmware	=v500r002c00
Huawei TE60 Firmware	=v600r006c00
Huawei TE60 Firmware

Never miss a vulnerability like this again

Reference Links

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171101-01-sccpx-en

Frequently Asked Questions

What is the severity of CVE-2017-15318?
CVE-2017-15318 is classified as a medium severity vulnerability due to potential exploitation resulting from an out-of-bounds read.
How do I fix CVE-2017-15318?
To fix CVE-2017-15318, upgrade the affected Huawei devices to the latest firmware version provided by Huawei.
What types of devices are affected by CVE-2017-15318?
CVE-2017-15318 affects several Huawei products including the RP200 and TE series firmware versions specified in the vulnerability description.
Can CVE-2017-15318 be exploited remotely?
Yes, CVE-2017-15318 can be exploited remotely due to insufficient input validation in the affected Huawei firmware.
What are the implications of CVE-2017-15318 on my network security?
Exploitation of CVE-2017-15318 could lead to unauthorized access or data leakage, posing a risk to network security.

agent/type
collector/mitre-cve
source/MITRE
agent/references
agent/severity
agent/author
agent/weakness
agent/last-modified-date
agent/event
agent/description
agent/first-publish-date
agent/source
agent/softwarecombine
agent/tags
collector/nvd-index
agent/software-canonical-lookup-request
vendor/huawei
canonical/huawei rp200 firmware
version/huawei rp200 firmware/v500r002c00
version/huawei rp200 firmware/v600r006c00
canonical/huawei te30 firmware
version/huawei te30 firmware/v100r001c10
version/huawei te30 firmware/v500r002c00
version/huawei te30 firmware/v600r006c00
canonical/huawei te40
version/huawei te40/v500r002c00
version/huawei te40/v600r006c00
canonical/huawei te50
version/huawei te50/v500r002c00
version/huawei te50/v600r006c00
canonical/huawei te50 firmware
canonical/huawei te60 firmware
version/huawei te60 firmware/v100r001c10
version/huawei te60 firmware/v500r002c00
version/huawei te60 firmware/v600r006c00