CVSS: 4.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17187
https://notcve.org/view.php?id=CVE-2017-17187
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. Due to insufficient input validation, an authenticated, remote attacker could send malformed SOAP packets to the target device. Successful exploit could cause an integer overflow and might reset a process. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, T... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-01-soap-en • CWE-190: Integer Overflow or Wraparound •
CVSS: 5.3EPSS: 0%CPEs: 20EXPL: 0CVE-2017-17283
https://notcve.org/view.php?id=CVE-2017-17283
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00 have an out-of-bound read vulnerability. A remote attacker send specially crafted Session Initiation Protocol (SIP) messages to the affected products. Due to insufficient input validation, successful exploit will cause some services abnormal. Huawei DP300 V500R002C00, RP200 V500R002C00, V600... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-02-sip-en • CWE-20: Improper Input Validation CWE-125: Out-of-bounds Read •
CVSS: 5.3EPSS: 0%CPEs: 20EXPL: 0CVE-2017-17284
https://notcve.org/view.php?id=CVE-2017-17284
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C01, V100R001C10, V500R002C00, V600R006C00 have a resource management error vulnerability. A remote attacker may send huge number of specially crafted SIP messages to the affected products. Due to improper handling of some value in the messages, successful exploit will cause some services abnormal. Huawei DP300 V500R002C00, RP200 V50... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180207-02-sip-en •
CVSS: 5.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17288
https://notcve.org/view.php?id=CVE-2017-17288
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have an integer overflow vulnerability. An unauthenticated, remote attacker may send specially crafted messages to the affected products. Due to insufficient input validation, successful exploit may cause integer overflow and some process abnormal. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180131-01-integer-en • CWE-190: Integer Overflow or Wraparound •
CVSS: 3.3EPSS: 0%CPEs: 19EXPL: 0CVE-2017-17289
https://notcve.org/view.php?id=CVE-2017-17289
15 Feb 2018 — Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability. The software does not release allocated memory properly when handling XML data. An authenticated, local attacker could upload crafted XML file repeatedly to cause memory leak and service abnormal. Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180124-01-xml-en • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 5.5EPSS: 0%CPEs: 138EXPL: 0CVE-2017-17291
https://notcve.org/view.php?id=CVE-2017-17291
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-06-xml-en • CWE-772: Missing Release of Resource after Effective Lifetime •
CVSS: 3.3EPSS: 0%CPEs: 138EXPL: 0CVE-2017-17292
https://notcve.org/view.php?id=CVE-2017-17292
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-06-xml-en • CWE-20: Improper Input Validation •
CVSS: 3.3EPSS: 0%CPEs: 138EXPL: 0CVE-2017-17293
https://notcve.org/view.php?id=CVE-2017-17293
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-06-xml-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •
CVSS: 3.3EPSS: 0%CPEs: 138EXPL: 0CVE-2017-17294
https://notcve.org/view.php?id=CVE-2017-17294
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-06-xml-en • CWE-476: NULL Pointer Dereference •
CVSS: 5.3EPSS: 0%CPEs: 139EXPL: 0CVE-2017-17298
https://notcve.org/view.php?id=CVE-2017-17298
15 Feb 2018 — Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V200R007C01, ... • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-overflow-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •