CVE-2017-17250

Severity Score

6.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

Huawei AR120-S V200R005C32; AR1200 V200R005C32; AR1200-S V200R005C32; AR150 V200R005C32; AR150-S V200R005C32; AR160 V200R005C32; AR200 V200R005C32; AR200-S V200R005C32; AR2200-S V200R005C32; AR3200 V200R005C32; V200R007C00; AR510 V200R005C32; NetEngine16EX V200R005C32; SRG1300 V200R005C32; SRG2300 V200R005C32; SRG3300 V200R005C32 have an out-of-bounds write vulnerability. When a user executes a query command after the device received an abnormal OSPF message, the software writes data past the end of the intended buffer due to the insufficient verification of the input data. An unauthenticated, remote attacker could exploit this vulnerability by sending abnormal OSPF messages to the device. A successful exploit could cause the system to crash.

Huawei AR120-S V200R005C32; AR1200 V200R005C32; AR1200-S V200R005C32; AR150 V200R005C32; AR150-S V200R005C32; AR160 V200R005C32; AR200 V200R005C32; AR200-S V200R005C32; AR2200-S V200R005C32; AR3200 V200R005C32; V200R007C00; AR510 V200R005C32; NetEngine16EX V200R005C32; SRG1300 V200R005C32; SRG2300 V200R005C32; SRG3300 V200R005C32 tienen una vulnerabilidad de escritura fuera de límites. Cuando un usuario ejecuta un comando de consulta cuando un dispositivo recibe un mensaje OSPF fuera de lo normal, el software escribe datos más allá del final del búfer planeado debido a la verificación insuficiente de los datos de entrada. Un atacante remoto no autenticado podría explotar esta vulnerabilidad enviando mensajes OSPF anormales al dispositivo. Una explotación exitosa podría hacer que el dispositivo se cierre inesperadamente.

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

Required

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

None

Integrity

None

Availability

Complete

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-12-04 CVE Reserved
2018-03-09 CVE Published
2024-08-05 CVE Updated
2024-11-19 EPSS Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-787: Out-of-bounds Write

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180214-01-ospf-en	2018-03-29

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Huawei Search vendor "Huawei"	Ar120-s Firmware Search vendor "Huawei" for product "Ar120-s Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar120-s Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar120-s Search vendor "Huawei" for product "Ar120-s"	-	-	Safe
Huawei Search vendor "Huawei"	Ar1200 Firmware Search vendor "Huawei" for product "Ar1200 Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar1200 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar1200 Search vendor "Huawei" for product "Ar1200"	-	-	Safe
Huawei Search vendor "Huawei"	Ar1200-s Firmware Search vendor "Huawei" for product "Ar1200-s Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar1200-s Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar1200-s Search vendor "Huawei" for product "Ar1200-s"	-	-	Safe
Huawei Search vendor "Huawei"	Ar150 Firmware Search vendor "Huawei" for product "Ar150 Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar150 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar150 Search vendor "Huawei" for product "Ar150"	-	-	Safe
Huawei Search vendor "Huawei"	Ar160 Firmware Search vendor "Huawei" for product "Ar160 Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar160 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar160 Search vendor "Huawei" for product "Ar160"	-	-	Safe
Huawei Search vendor "Huawei"	Ar200 Firmware Search vendor "Huawei" for product "Ar200 Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar200 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar200 Search vendor "Huawei" for product "Ar200"	-	-	Safe
Huawei Search vendor "Huawei"	Ar200-s Firmware Search vendor "Huawei" for product "Ar200-s Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar200-s Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar200-s Search vendor "Huawei" for product "Ar200-s"	-	-	Safe
Huawei Search vendor "Huawei"	Ar150-s Firmware Search vendor "Huawei" for product "Ar150-s Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar150-s Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar150-s Search vendor "Huawei" for product "Ar150-s"	-	-	Safe
Huawei Search vendor "Huawei"	Ar2200-s Firmware Search vendor "Huawei" for product "Ar2200-s Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar2200-s Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar2200-s Search vendor "Huawei" for product "Ar2200-s"	-	-	Safe
Huawei Search vendor "Huawei"	Ar3200 Firmware Search vendor "Huawei" for product "Ar3200 Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar3200 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar3200 Search vendor "Huawei" for product "Ar3200"	-	-	Safe
Huawei Search vendor "Huawei"	Ar3200 Firmware Search vendor "Huawei" for product "Ar3200 Firmware"	v200r007c00 Search vendor "Huawei" for product "Ar3200 Firmware" and version "v200r007c00"	-	Affected	in	Huawei Search vendor "Huawei"	Ar3200 Search vendor "Huawei" for product "Ar3200"	-	-	Safe
Huawei Search vendor "Huawei"	Ar510 Firmware Search vendor "Huawei" for product "Ar510 Firmware"	v200r005c32 Search vendor "Huawei" for product "Ar510 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Ar510 Search vendor "Huawei" for product "Ar510"	-	-	Safe
Huawei Search vendor "Huawei"	Netengine16ex Firmware Search vendor "Huawei" for product "Netengine16ex Firmware"	v200r005c32 Search vendor "Huawei" for product "Netengine16ex Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Netengine16ex Search vendor "Huawei" for product "Netengine16ex"	-	-	Safe
Huawei Search vendor "Huawei"	S12700 Firmware Search vendor "Huawei" for product "S12700 Firmware"	v200r007c00 Search vendor "Huawei" for product "S12700 Firmware" and version "v200r007c00"	-	Affected	in	Huawei Search vendor "Huawei"	S12700 Search vendor "Huawei" for product "S12700"	-	-	Safe
Huawei Search vendor "Huawei"	S12700 Firmware Search vendor "Huawei" for product "S12700 Firmware"	v200r007c01 Search vendor "Huawei" for product "S12700 Firmware" and version "v200r007c01"	-	Affected	in	Huawei Search vendor "Huawei"	S12700 Search vendor "Huawei" for product "S12700"	-	-	Safe
Huawei Search vendor "Huawei"	S12700 Firmware Search vendor "Huawei" for product "S12700 Firmware"	v200r008c00 Search vendor "Huawei" for product "S12700 Firmware" and version "v200r008c00"	-	Affected	in	Huawei Search vendor "Huawei"	S12700 Search vendor "Huawei" for product "S12700"	-	-	Safe
Huawei Search vendor "Huawei"	S2700 Firmware Search vendor "Huawei" for product "S2700 Firmware"	v200r006c10 Search vendor "Huawei" for product "S2700 Firmware" and version "v200r006c10"	-	Affected	in	Huawei Search vendor "Huawei"	S2700 Search vendor "Huawei" for product "S2700"	-	-	Safe
Huawei Search vendor "Huawei"	S2700 Firmware Search vendor "Huawei" for product "S2700 Firmware"	v200r007c00 Search vendor "Huawei" for product "S2700 Firmware" and version "v200r007c00"	-	Affected	in	Huawei Search vendor "Huawei"	S2700 Search vendor "Huawei" for product "S2700"	-	-	Safe
Huawei Search vendor "Huawei"	S2700 Firmware Search vendor "Huawei" for product "S2700 Firmware"	v200r008c00 Search vendor "Huawei" for product "S2700 Firmware" and version "v200r008c00"	-	Affected	in	Huawei Search vendor "Huawei"	S2700 Search vendor "Huawei" for product "S2700"	-	-	Safe
Huawei Search vendor "Huawei"	S5700 Firmware Search vendor "Huawei" for product "S5700 Firmware"	v200r007c00 Search vendor "Huawei" for product "S5700 Firmware" and version "v200r007c00"	-	Affected	in	Huawei Search vendor "Huawei"	S5700 Search vendor "Huawei" for product "S5700"	-	-	Safe
Huawei Search vendor "Huawei"	S5700 Firmware Search vendor "Huawei" for product "S5700 Firmware"	v200r008c00 Search vendor "Huawei" for product "S5700 Firmware" and version "v200r008c00"	-	Affected	in	Huawei Search vendor "Huawei"	S5700 Search vendor "Huawei" for product "S5700"	-	-	Safe
Huawei Search vendor "Huawei"	S6700 Firmware Search vendor "Huawei" for product "S6700 Firmware"	v200r008c00 Search vendor "Huawei" for product "S6700 Firmware" and version "v200r008c00"	-	Affected	in	Huawei Search vendor "Huawei"	S6700 Search vendor "Huawei" for product "S6700"	-	-	Safe
Huawei Search vendor "Huawei"	S7700 Firmware Search vendor "Huawei" for product "S7700 Firmware"	v200r007c00 Search vendor "Huawei" for product "S7700 Firmware" and version "v200r007c00"	-	Affected	in	Huawei Search vendor "Huawei"	S7700 Search vendor "Huawei" for product "S7700"	-	-	Safe
Huawei Search vendor "Huawei"	S7700 Firmware Search vendor "Huawei" for product "S7700 Firmware"	v200r008c00 Search vendor "Huawei" for product "S7700 Firmware" and version "v200r008c00"	-	Affected	in	Huawei Search vendor "Huawei"	S7700 Search vendor "Huawei" for product "S7700"	-	-	Safe
Huawei Search vendor "Huawei"	S9700 Firmware Search vendor "Huawei" for product "S9700 Firmware"	v200r007c00 Search vendor "Huawei" for product "S9700 Firmware" and version "v200r007c00"	-	Affected	in	Huawei Search vendor "Huawei"	S9700 Search vendor "Huawei" for product "S9700"	-	-	Safe
Huawei Search vendor "Huawei"	S9700 Firmware Search vendor "Huawei" for product "S9700 Firmware"	v200r007c01 Search vendor "Huawei" for product "S9700 Firmware" and version "v200r007c01"	-	Affected	in	Huawei Search vendor "Huawei"	S9700 Search vendor "Huawei" for product "S9700"	-	-	Safe
Huawei Search vendor "Huawei"	S9700 Firmware Search vendor "Huawei" for product "S9700 Firmware"	v200r008c00 Search vendor "Huawei" for product "S9700 Firmware" and version "v200r008c00"	-	Affected	in	Huawei Search vendor "Huawei"	S9700 Search vendor "Huawei" for product "S9700"	-	-	Safe
Huawei Search vendor "Huawei"	Srg1300 Firmware Search vendor "Huawei" for product "Srg1300 Firmware"	v200r005c32 Search vendor "Huawei" for product "Srg1300 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Srg1300 Search vendor "Huawei" for product "Srg1300"	-	-	Safe
Huawei Search vendor "Huawei"	Srg2300 Firmware Search vendor "Huawei" for product "Srg2300 Firmware"	v200r005c32 Search vendor "Huawei" for product "Srg2300 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Srg2300 Search vendor "Huawei" for product "Srg2300"	-	-	Safe
Huawei Search vendor "Huawei"	Srg3300 Firmware Search vendor "Huawei" for product "Srg3300 Firmware"	v200r005c32 Search vendor "Huawei" for product "Srg3300 Firmware" and version "v200r005c32"	-	Affected	in	Huawei Search vendor "Huawei"	Srg3300 Search vendor "Huawei" for product "Srg3300"	-	-	Safe