First published: Thu Feb 15 2018(Updated: )
Huawei DP300, V500R002C00, RP200, V500R002C00, V600R006C00, RSE6500, V500R002C00, TE30, V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40, V500R002C00, V600R006C00, TE50, V500R002C00, V600R006C00, TE60, V100R001C01, V100R001C10, V500R002C00, V600R006C00, TX50, V500R002C00, V600R006C00, VP9660, V500R002C00, V500R002C10, ViewPoint 8660, V100R008C03, ViewPoint 9030, V100R011C02, V100R011C03, Viewpoint 8660, V100R008C03 have an out-of-bounds read vulnerability. An attacker has to control the peer device and send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause some service abnormal.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Dp300 Firmware | =v500r002c00 | |
Huawei DP300 | ||
Huawei Rp200 Firmware | =v500r002c00 | |
Huawei Rp200 Firmware | =v600r006c00 | |
Huawei Rp200 | ||
Huawei Rse6500 Firmware | =v500r002c00 | |
Huawei Rse6500 | ||
Huawei Te30 Firmware | =v100r001c02 | |
Huawei Te30 Firmware | =v100r001c10 | |
Huawei Te30 Firmware | =v500r002c00 | |
Huawei Te30 Firmware | =v600r006c00 | |
Huawei TE30 | ||
Huawei Te40 Firmware | =v500r002c00 | |
Huawei Te40 Firmware | =v600r006c00 | |
Huawei Te40 | ||
Huawei Te50 Firmware | =v500r002c00 | |
Huawei Te50 Firmware | =v600r006c00 | |
Huawei Te50 | ||
Huawei Te60 Firmware | =v100r001c01 | |
Huawei Te60 Firmware | =v100r001c10 | |
Huawei Te60 Firmware | =v500r002c00 | |
Huawei Te60 Firmware | =v600r006c00 | |
Huawei TE60 | ||
Huawei Tx50 Firmware | =v500r002c00 | |
Huawei Tx50 Firmware | =v600r006c00 | |
Huawei Tx50 | ||
Huawei Viewpoint 8660 Firmware | =v100r008c03 | |
Huawei ViewPoint 8660 | ||
Huawei Vp9660 Firmware | =v500r002c00 | |
Huawei Vp9660 Firmware | =v500r002c10 | |
Huawei VP9660 | ||
Huawei Viewpoint 9030 Firmware | =v100r011c02 | |
Huawei Viewpoint 9030 Firmware | =v100r011c03 | |
Huawei Viewpoint 9030 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The severity of CVE-2017-15353 is medium with a severity value of 3.7.
Huawei DP300, RP200, RSE6500, TE30, TE40, TE50, TE60, TX50, VP9660, Viewpoint 8660, and Viewpoint 9030 are affected by CVE-2017-15353.
To fix CVE-2017-15353, it is recommended to apply the latest firmware updates provided by Huawei.
The CWE ID for CVE-2017-15353 is CWE-20 and CWE-125.
More information about CVE-2017-15353 can be found on the Huawei PSIRT security advisories page.