CVE-2017-17220
First published: Fri Mar 09 2018(Updated: )
SCCPX module in Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an invalid memory access vulnerabilities. An unauthenticated, remote attacker crafts malformed packets with specific parameter to the affected products. Due to insufficient validation of packets, successful exploitation may impact availability of product service.
Credit: psirt@huawei.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Huawei Dp300 Firmware | =v500r002c00 | |
| Huawei DP300 | ||
| Huawei Rp200 Firmware | =v500r002c00 | |
| Huawei Rp200 Firmware | =v600r006c00 | |
| Huawei Rp200 | ||
| Huawei Te30 Firmware | =v100r001c10 | |
| Huawei Te30 Firmware | =v500r002c00 | |
| Huawei Te30 Firmware | =v600r006c00 | |
| Huawei TE30 | ||
| Huawei Te40 Firmware | =v500r002c00 | |
| Huawei Te40 Firmware | =v600r006c00 | |
| Huawei Te40 | ||
| Huawei Te50 Firmware | =v500r002c00 | |
| Huawei Te50 Firmware | =v600r006c00 | |
| Huawei Te50 | ||
| Huawei Te60 Firmware | =v100r001c10 | |
| Huawei Te60 Firmware | =v500r002c00 | |
| Huawei Te60 Firmware | =v600r006c00 | |
| Huawei TE60 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is CVE-2017-17220?
CVE-2017-17220 is a vulnerability in the SCCPX module in Huawei DP300, RP200, TE30, TE40, TE50, and TE60 devices.
What is the severity of CVE-2017-17220?
CVE-2017-17220 has a severity rating of 5.3 (medium).
Which Huawei devices are affected by CVE-2017-17220?
Huawei DP300, RP200, TE30, TE40, TE50, and TE60 devices are affected by CVE-2017-17220.
How can I fix CVE-2017-17220?
To fix CVE-2017-17220, it is recommended to apply the security patches provided by Huawei.
Where can I find more information about CVE-2017-17220?
More information about CVE-2017-17220 can be found in the Huawei security advisory: http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-sccpx-en
- collector/nvd-index
- vendor/huawei
- canonical/huawei dp300 firmware
- version/huawei dp300 firmware/v500r002c00
- canonical/huawei dp300
- canonical/huawei rp200 firmware
- version/huawei rp200 firmware/v500r002c00
- version/huawei rp200 firmware/v600r006c00
- canonical/huawei rp200
- canonical/huawei te30 firmware
- version/huawei te30 firmware/v100r001c10
- version/huawei te30 firmware/v500r002c00
- version/huawei te30 firmware/v600r006c00
- canonical/huawei te30
- canonical/huawei te40 firmware
- version/huawei te40 firmware/v500r002c00
- version/huawei te40 firmware/v600r006c00
- canonical/huawei te40
- canonical/huawei te50 firmware
- version/huawei te50 firmware/v500r002c00
- version/huawei te50 firmware/v600r006c00
- canonical/huawei te50
- canonical/huawei te60 firmware
- version/huawei te60 firmware/v100r001c10
- version/huawei te60 firmware/v500r002c00
- version/huawei te60 firmware/v600r006c00
- canonical/huawei te60