First published: Thu Feb 15 2018(Updated: )
IKEv2 in Huawei IPS Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NGFW Module V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, NIP6600 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, Secospace USG6300 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE, Secospace USG6600 V500R001C00, V500R001C00SPC100, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC301, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200PWE, V500R001C20SPC300, V500R001C20SPC300B078, V500R001C20SPC300PWE, USG9500 V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC303, V500R001C00SPC500, V500R001C00SPC500PWE, V500R001C00SPH303, V500R001C00SPH508, V500R001C20, V500R001C20SPC100, V500R001C20SPC100PWE, V500R001C20SPC101, V500R001C20SPC200, V500R001C20SPC200B062, V500R001C20SPC200PWE, V500R001C20SPC300B078, V500R001C20SPC300PWE has an out-of-bounds memory access vulnerability due to insufficient input validation. An attacker could exploit it to craft special packets to trigger out-of-bounds memory access, which may further lead to system exceptions.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Ips Module Firmware | =v500r001c00 | |
Huawei Ips Module Firmware | =v500r001c00spc200 | |
Huawei Ips Module Firmware | =v500r001c00spc300 | |
Huawei Ips Module Firmware | =v500r001c00spc500 | |
Huawei Ips Module Firmware | =v500r001c00sph303 | |
Huawei Ips Module Firmware | =v500r001c00sph508 | |
Huawei Ips Module Firmware | =v500r001c20 | |
Huawei Ips Module Firmware | =v500r001c20spc100 | |
Huawei Ips Module Firmware | =v500r001c20spc100pwe | |
Huawei Ips Module Firmware | =v500r001c20spc200 | |
Huawei Ips Module Firmware | =v500r001c20spc200b062 | |
Huawei Ips Module Firmware | =v500r001c20spc200pwe | |
Huawei Ips Module Firmware | =v500r001c20spc300b078 | |
Huawei Ips Module Firmware | =v500r001c20spc300pwe | |
Huawei IPS Module | ||
Huawei Ngfw Module Firmware | =v500r001c00 | |
Huawei Ngfw Module Firmware | =v500r001c00spc200 | |
Huawei Ngfw Module Firmware | =v500r001c00spc300 | |
Huawei Ngfw Module Firmware | =v500r001c00spc500 | |
Huawei Ngfw Module Firmware | =v500r001c00spc500pwe | |
Huawei Ngfw Module Firmware | =v500r001c00sph303 | |
Huawei Ngfw Module Firmware | =v500r001c00sph508 | |
Huawei Ngfw Module Firmware | =v500r001c20 | |
Huawei Ngfw Module Firmware | =v500r001c20spc100 | |
Huawei Ngfw Module Firmware | =v500r001c20spc100pwe | |
Huawei Ngfw Module Firmware | =v500r001c20spc200 | |
Huawei Ngfw Module Firmware | =v500r001c20spc200b062 | |
Huawei Ngfw Module Firmware | =v500r001c20spc200pwe | |
Huawei Ngfw Module Firmware | =v500r001c20spc300b078 | |
Huawei Ngfw Module Firmware | =v500r001c20spc300pwe | |
Huawei NGFW Module | ||
Huawei Nip6300 Firmware | =v500r001c00 | |
Huawei Nip6300 Firmware | =v500r001c00spc200 | |
Huawei Nip6300 Firmware | =v500r001c00spc300 | |
Huawei Nip6300 Firmware | =v500r001c00spc500 | |
Huawei Nip6300 Firmware | =v500r001c00sph303 | |
Huawei Nip6300 Firmware | =v500r001c00sph508 | |
Huawei Nip6300 Firmware | =v500r001c20 | |
Huawei Nip6300 Firmware | =v500r001c20spc100 | |
Huawei Nip6300 Firmware | =v500r001c20spc100pwe | |
Huawei Nip6300 Firmware | =v500r001c20spc200 | |
Huawei Nip6300 Firmware | =v500r001c20spc200b062 | |
Huawei Nip6300 Firmware | =v500r001c20spc200pwe | |
Huawei Nip6300 Firmware | =v500r001c20spc300b078 | |
Huawei Nip6300 Firmware | =v500r001c20spc300pwe | |
Huawei NIP6300 | ||
Huawei Nip6600 Firmware | =v500r001c00 | |
Huawei Nip6600 Firmware | =v500r001c00spc200 | |
Huawei Nip6600 Firmware | =v500r001c00spc300 | |
Huawei Nip6600 Firmware | =v500r001c00spc500 | |
Huawei Nip6600 Firmware | =v500r001c00sph303 | |
Huawei Nip6600 Firmware | =v500r001c00sph508 | |
Huawei Nip6600 Firmware | =v500r001c20 | |
Huawei Nip6600 Firmware | =v500r001c20spc100 | |
Huawei Nip6600 Firmware | =v500r001c20spc100pwe | |
Huawei Nip6600 Firmware | =v500r001c20spc200 | |
Huawei Nip6600 Firmware | =v500r001c20spc200b062 | |
Huawei Nip6600 Firmware | =v500r001c20spc200pwe | |
Huawei Nip6600 Firmware | =v500r001c20spc300b078 | |
Huawei Nip6600 | ||
Huawei Secospace Usg6300 Firmware | =v500r001c00 | |
Huawei Secospace Usg6300 Firmware | =v500r001c00spc200 | |
Huawei Secospace Usg6300 Firmware | =v500r001c00spc300 | |
Huawei Secospace Usg6300 Firmware | =v500r001c00spc500 | |
Huawei Secospace Usg6300 Firmware | =v500r001c00spc500pwe | |
Huawei Secospace Usg6300 Firmware | =v500r001c00sph303 | |
Huawei Secospace Usg6300 Firmware | =v500r001c00sph508 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc100 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc100pwe | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc101 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc200 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc200b062 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc200pwe | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc300b078 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc300pwe | |
Huawei Secospace USG6300 | ||
Huawei Secospace Usg6500 Firmware | =v500r001c00 | |
Huawei Secospace Usg6500 Firmware | =v500r001c00spc200 | |
Huawei Secospace Usg6500 Firmware | =v500r001c00spc300 | |
Huawei Secospace Usg6500 Firmware | =v500r001c00spc500 | |
Huawei Secospace Usg6500 Firmware | =v500r001c00spc500pwe | |
Huawei Secospace Usg6500 Firmware | =v500r001c00sph303 | |
Huawei Secospace Usg6500 Firmware | =v500r001c00sph508 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc100 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc100pwe | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc101 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc200 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc200b062 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc200pwe | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc300b078 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc300pwe | |
Huawei Secospace Usg6500 | ||
Huawei Secospace Usg6600 Firmware | =v500r001c00 | |
Huawei Secospace Usg6600 Firmware | =v500r001c00spc100 | |
Huawei Secospace Usg6600 Firmware | =v500r001c00spc200 | |
Huawei Secospace Usg6600 Firmware | =v500r001c00spc300 | |
Huawei Secospace Usg6600 Firmware | =v500r001c00spc301 | |
Huawei Secospace Usg6600 Firmware | =v500r001c00spc500 | |
Huawei Secospace Usg6600 Firmware | =v500r001c00spc500pwe | |
Huawei Secospace Usg6600 Firmware | =v500r001c00sph303 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc100 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc100pwe | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc101 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc200 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc200pwe | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc300 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc300b078 | |
Huawei Secospace Usg6600 Firmware | =v500r001c20spc300pwe | |
Huawei Secospace USG6600 | ||
Huawei Usg9500 Firmware | =v500r001c00 | |
Huawei Usg9500 Firmware | =v500r001c00spc200 | |
Huawei Usg9500 Firmware | =v500r001c00spc300 | |
Huawei Usg9500 Firmware | =v500r001c00spc303 | |
Huawei Usg9500 Firmware | =v500r001c00spc500 | |
Huawei Usg9500 Firmware | =v500r001c00spc500pwe | |
Huawei Usg9500 Firmware | =v500r001c00sph303 | |
Huawei Usg9500 Firmware | =v500r001c00sph508 | |
Huawei Usg9500 Firmware | =v500r001c20 | |
Huawei Usg9500 Firmware | =v500r001c20spc100 | |
Huawei Usg9500 Firmware | =v500r001c20spc100pwe | |
Huawei Usg9500 Firmware | =v500r001c20spc101 | |
Huawei Usg9500 Firmware | =v500r001c20spc200 | |
Huawei Usg9500 Firmware | =v500r001c20spc200b062 | |
Huawei Usg9500 Firmware | =v500r001c20spc200pwe | |
Huawei Usg9500 Firmware | =v500r001c20spc300b078 | |
Huawei Usg9500 Firmware | =v500r001c20spc300pwe | |
Huawei USG9500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-17157 is a vulnerability in IKEv2 in Huawei IPS Module affecting multiple versions of the firmware.
CVE-2017-17157 has a severity keyword of "high" with a CVSS score of 7.5.
CVE-2017-17157 affects various versions of Huawei IPS Module firmware including V500R001C00, V500R001C00SPC200, V500R001C00SPC300, V500R001C00SPC500, and others.
Yes, Huawei IPS Module firmware versions mentioned are vulnerable to CVE-2017-17157.
More information about CVE-2017-17157 can be found at the reference link provided by Huawei in their security advisory.