First published: Thu Feb 15 2018(Updated: )
Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, V200R008C20, V200R008C30, AR200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR2200 V200R006C10, V200R006C13, V200R006C16, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR2200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR3200 V200R006C10, V200R006C11, V200R007C00, V200R007C01, V200R007C02, V200R008C00, V200R008C10, V200R008C20, V200R008C30, AR3600 V200R006C10, V200R007C00, V200R007C01, V200R008C20, AR510 V200R006C10, V200R006C12, V200R006C13, V200R006C15, V200R006C16, V200R006C17, V200R007C00, V200R008C20, V200R008C30, DP300 V500R002C00, MAX PRESENCE V100R001C00, NetEngine16EX V200R006C10, V200R007C00, V200R008C20, V200R008C30, RP200 V500R002C00, V600R006C00, SRG1300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG2300 V200R006C10, V200R007C00, V200R007C02, V200R008C20, V200R008C30, SRG3300 V200R006C10, V200R007C00, V200R008C20, V200R008C30, TE30 V100R001C02, V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00, TP3106 V100R002C00, TP3206 V100R002C00, V100R002C10 have a null pointer dereference vulnerability. Due to insufficient input validation, an authenticated, local attacker may craft a specific XML file to the affected products to cause null pointer dereference. Successful exploit will cause some service abnormal.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei AR120 firmware | =v200r006c10 | |
Huawei AR120 firmware | =v200r007c00 | |
Huawei AR120 firmware | =v200r008c20 | |
Huawei AR120 firmware | =v200r008c30 | |
Huawei AR120 firmware | ||
Huawei AR1200-S Firmware | =v200r006c10 | |
Huawei AR1200-S Firmware | =v200r006c13 | |
Huawei AR1200-S Firmware | =v200r007c00 | |
Huawei AR1200-S Firmware | =v200r007c01 | |
Huawei AR1200-S Firmware | =v200r007c02 | |
Huawei AR1200-S Firmware | =v200r008c20 | |
Huawei AR1200-S Firmware | =v200r008c30 | |
Huawei AR1200-S | ||
Huawei AR1200-S Firmware | =v200r006c10 | |
Huawei AR1200-S Firmware | =v200r007c00 | |
Huawei AR1200-S Firmware | =v200r008c20 | |
Huawei AR1200-S Firmware | =v200r008c30 | |
Huawei AR1200 | ||
Huawei AR150-S Firmware | =v200r006c10 | |
Huawei AR150-S Firmware | =v200r007c00 | |
Huawei AR150-S Firmware | =v200r007c01 | |
Huawei AR150-S Firmware | =v200r007c02 | |
Huawei AR150-S Firmware | =v200r008c20 | |
Huawei AR150-S Firmware | =v200r008c30 | |
Huawei AR150 Firmware | ||
Huawei AR150 Firmware | =v200r006c10 | |
Huawei AR150 Firmware | =v200r007c00 | |
Huawei AR150 Firmware | =v200r008c20 | |
Huawei AR150 Firmware | =v200r008c30 | |
Huawei AR150 Firmware | ||
Huawei AR160 Firmware | =v200r006c10 | |
Huawei AR160 Firmware | =v200r006c12 | |
Huawei AR160 Firmware | =v200r007c00 | |
Huawei AR160 Firmware | =v200r007c01 | |
Huawei AR160 Firmware | =v200r007c02 | |
Huawei AR160 Firmware | =v200r008c20 | |
Huawei AR160 Firmware | =v200r008c30 | |
Huawei Access Router | ||
Huawei AR200-S Firmware | =v200r006c10 | |
Huawei AR200-S Firmware | =v200r007c00 | |
Huawei AR200-S Firmware | =v200r007c01 | |
Huawei AR200-S Firmware | =v200r008c20 | |
Huawei AR200-S Firmware | =v200r008c30 | |
Huawei AR200 Firmware | ||
Huawei AR200 Firmware | =v200r006c10 | |
Huawei AR200 Firmware | =v200r007c00 | |
Huawei AR200 Firmware | =v200r008c20 | |
Huawei AR200 Firmware | =v200r008c30 | |
Huawei AR200-S Firmware | ||
Huawei AR2200 Series Firmware | =v200r006c10 | |
Huawei AR2200 Series Firmware | =v200r006c13 | |
Huawei AR2200 Series Firmware | =v200r006c16 | |
Huawei AR2200 Series Firmware | =v200r007c00 | |
Huawei AR2200 Series Firmware | =v200r007c01 | |
Huawei AR2200 Series Firmware | =v200r007c02 | |
Huawei AR2200 Series Firmware | =v200r008c20 | |
Huawei AR2200 Series Firmware | =v200r008c30 | |
Huawei AR2200 Series Firmware | ||
Huawei AR2200 Series Firmware | =v200r006c10 | |
Huawei AR2200 Series Firmware | =v200r007c00 | |
Huawei AR2200 Series Firmware | =v200r008c20 | |
Huawei AR2200 Series Firmware | =v200r008c30 | |
Huawei AR2200 Series Firmware | ||
Huawei AR3200 | =v200r006c10 | |
Huawei AR3200 | =v200r006c11 | |
Huawei AR3200 | =v200r007c00 | |
Huawei AR3200 | =v200r007c01 | |
Huawei AR3200 | =v200r007c02 | |
Huawei AR3200 | =v200r008c00 | |
Huawei AR3200 | =v200r008c10 | |
Huawei AR3200 | =v200r008c20 | |
Huawei AR3200 | =v200r008c30 | |
Huawei AR3200 firmware | ||
Huawei AR3600 Firmware | =v200r006c10 | |
Huawei AR3600 Firmware | =v200r007c00 | |
Huawei AR3600 Firmware | =v200r007c01 | |
Huawei AR3600 Firmware | =v200r008c20 | |
Huawei AR3600 Firmware | ||
Huawei AR510 Firmware | =v200r006c10 | |
Huawei AR510 Firmware | =v200r006c12 | |
Huawei AR510 Firmware | =v200r006c13 | |
Huawei AR510 Firmware | =v200r006c15 | |
Huawei AR510 Firmware | =v200r006c16 | |
Huawei AR510 Firmware | =v200r006c17 | |
Huawei AR510 Firmware | =v200r007c00 | |
Huawei AR510 Firmware | =v200r008c20 | |
Huawei AR510 Firmware | =v200r008c30 | |
Huawei AR510 Firmware | ||
Huawei DP300 firmware | =v500r002c00 | |
Huawei DP300 firmware | ||
Huawei MAX PRESENCE | =v100r001c00 | |
Huawei MAX PRESENCE firmware | ||
Huawei NetEngine 16EX firmware | =v200r006c10 | |
Huawei NetEngine 16EX firmware | =v200r007c00 | |
Huawei NetEngine 16EX firmware | =v200r008c20 | |
Huawei NetEngine 16EX firmware | =v200r008c30 | |
Huawei NetEngine 16EX | ||
Huawei RP200 Firmware | =v500r002c00 | |
Huawei RP200 Firmware | =v600r006c00 | |
Huawei RP200 Firmware | ||
Huawei SRG1300 | =v200r006c10 | |
Huawei SRG1300 | =v200r007c00 | |
Huawei SRG1300 | =v200r007c02 | |
Huawei SRG1300 | =v200r008c20 | |
Huawei SRG1300 | =v200r008c30 | |
Huawei SRG1300 Firmware | ||
Huawei SRG2300 | =v200r006c10 | |
Huawei SRG2300 | =v200r007c00 | |
Huawei SRG2300 | =v200r007c02 | |
Huawei SRG2300 | =v200r008c20 | |
Huawei SRG2300 | =v200r008c30 | |
Huawei SRG2300 | ||
Huawei SRG3300 | =v200r006c10 | |
Huawei SRG3300 | =v200r007c00 | |
Huawei SRG3300 | =v200r008c20 | |
Huawei SRG3300 | =v200r008c30 | |
Huawei SRG3300 Firmware | ||
Huawei TE30 Firmware | =v100r001c02 | |
Huawei TE30 Firmware | =v100r001c10 | |
Huawei TE30 Firmware | =v500r002c00 | |
Huawei TE30 Firmware | =v600r006c00 | |
Huawei TE30 Firmware | ||
Huawei TE40 | =v500r002c00 | |
Huawei TE40 | =v600r006c00 | |
Huawei TE40 | ||
Huawei TE50 | =v500r002c00 | |
Huawei TE50 | =v600r006c00 | |
Huawei TE50 firmware | ||
Huawei TE60 Firmware | =v100r001c01 | |
Huawei TE60 Firmware | =v100r001c10 | |
Huawei TE60 Firmware | =v500r002c00 | |
Huawei TE60 Firmware | =v600r006c00 | |
Huawei TE60 Firmware | ||
Huawei TP3106 Firmware | =v100r002c00 | |
Huawei TP3106 Firmware | ||
Huawei TP3206 | =v100r002c00 | |
Huawei TP3206 | =v100r002c10 | |
Huawei TP3206 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2017-17294 has a high severity level as it affects multiple versions of Huawei router firmware, which could potentially allow attackers to execute unauthorized actions.
To fix CVE-2017-17294, users should update their Huawei devices to the latest firmware version that addresses the vulnerability.
Affected Huawei firmware versions include V200R006C10, V200R007C00, V200R008C20, and V200R008C30 across various series including AR120, AR1200, AR150, and others.
CVE-2017-17294 impacts multiple Huawei router models, including the AR120, AR1200, AR150, AR160, and others.
Currently, the most effective workaround for CVE-2017-17294 is to apply the recommended firmware updates provided by Huawei.