CVE-2017-2722
Severity Score
8.8
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
DP300 V500R002C00,TE60 with software V100R001C01, V100R001C10, V100R003C00, V500R002C00 and V600R006C00,TP3106 with software V100R001C06 and V100R002C00,ViewPoint 9030 with software V100R011C02, V100R011C03,eCNS210_TD with software V100R004C10,eSpace 7950 with software V200R003C00 and V200R003C30,eSpace IAD with software V300R001C07SPCa00 and V300R002C01SPCb00,eSpace U1981 with software V100R001C20, V100R001C30, V200R003C00, V200R003C20 and V200R003C30 have an input validation vulnerability.A remote attacker may exploit this vulnerability by crafting a malformed packet and sending it to the device. A successful exploit could allow the attacker to cause a denial of service or execute arbitrary code.
DP300 V500R002C00, TE60 con software V100R001C01, V100R001C10, V100R003C00, V500R002C00 y V600R006C00, TP3106 con software V100R001C06 y V100R002C00, ViewPoint 9030 con software V100R011C02 y V100R011C03, eCNS210_TD con software V100R004C10, eSpace 7950 con software V200R003C00 y V200R003C30, eSpace IAD con software V300R001C07SPCa00 y V300R002C01SPCb00, eSpace U1981 con software V100R001C20, V100R001C30, V200R003C00, V200R003C20 y V200R003C30 tienen una vulnerabilidad de validación de entradas. Un atacante remoto podría explotar esta vulnerabilidad manipulando un paquete mal formado y enviándolo al dispositivo. Un exploit exitoso podría permitir que el atacante provoque una denegación de servicio o ejecute código arbitrario.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2016-12-01 CVE Reserved
- 2017-11-22 CVE Published
- 2024-06-18 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170419-01-pse-en | 2017-12-11 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Huawei Search vendor "Huawei" | Dp300 Firmware Search vendor "Huawei" for product "Dp300 Firmware" | v500r002c00 Search vendor "Huawei" for product "Dp300 Firmware" and version "v500r002c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Dp300 Search vendor "Huawei" for product "Dp300" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v100r001c01 Search vendor "Huawei" for product "Te60 Firmware" and version "v100r001c01" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v100r001c10 Search vendor "Huawei" for product "Te60 Firmware" and version "v100r001c10" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v100r003c00 Search vendor "Huawei" for product "Te60 Firmware" and version "v100r003c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v500r002c00 Search vendor "Huawei" for product "Te60 Firmware" and version "v500r002c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Te60 Firmware Search vendor "Huawei" for product "Te60 Firmware" | v600r006c00 Search vendor "Huawei" for product "Te60 Firmware" and version "v600r006c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Te60 Search vendor "Huawei" for product "Te60" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Tp3106 Firmware Search vendor "Huawei" for product "Tp3106 Firmware" | v100r001c06 Search vendor "Huawei" for product "Tp3106 Firmware" and version "v100r001c06" | - |
Affected
| in | Huawei Search vendor "Huawei" | Tp3106 Search vendor "Huawei" for product "Tp3106" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Tp3106 Firmware Search vendor "Huawei" for product "Tp3106 Firmware" | v100r002c00 Search vendor "Huawei" for product "Tp3106 Firmware" and version "v100r002c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Tp3106 Search vendor "Huawei" for product "Tp3106" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Viewpoint 9030 Firmware Search vendor "Huawei" for product "Viewpoint 9030 Firmware" | v100r011c02 Search vendor "Huawei" for product "Viewpoint 9030 Firmware" and version "v100r011c02" | - |
Affected
| in | Huawei Search vendor "Huawei" | Viewpoint 9030 Search vendor "Huawei" for product "Viewpoint 9030" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Viewpoint 9030 Firmware Search vendor "Huawei" for product "Viewpoint 9030 Firmware" | v100r011c03 Search vendor "Huawei" for product "Viewpoint 9030 Firmware" and version "v100r011c03" | - |
Affected
| in | Huawei Search vendor "Huawei" | Viewpoint 9030 Search vendor "Huawei" for product "Viewpoint 9030" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Ecns210 Td Firmware Search vendor "Huawei" for product "Ecns210 Td Firmware" | v100r004c10 Search vendor "Huawei" for product "Ecns210 Td Firmware" and version "v100r004c10" | - |
Affected
| in | Huawei Search vendor "Huawei" | Ecns210 Td Search vendor "Huawei" for product "Ecns210 Td" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace 7950 Firmware Search vendor "Huawei" for product "Espace 7950 Firmware" | v200r003c00 Search vendor "Huawei" for product "Espace 7950 Firmware" and version "v200r003c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace 7950 Search vendor "Huawei" for product "Espace 7950" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace 7950 Firmware Search vendor "Huawei" for product "Espace 7950 Firmware" | v200r003c30 Search vendor "Huawei" for product "Espace 7950 Firmware" and version "v200r003c30" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace 7950 Search vendor "Huawei" for product "Espace 7950" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace Iad Firmware Search vendor "Huawei" for product "Espace Iad Firmware" | v300r001c07spca00 Search vendor "Huawei" for product "Espace Iad Firmware" and version "v300r001c07spca00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace Iad Search vendor "Huawei" for product "Espace Iad" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace Iad Firmware Search vendor "Huawei" for product "Espace Iad Firmware" | v300r002c01spcb00 Search vendor "Huawei" for product "Espace Iad Firmware" and version "v300r002c01spcb00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace Iad Search vendor "Huawei" for product "Espace Iad" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace U1981 Firmware Search vendor "Huawei" for product "Espace U1981 Firmware" | v100r001c20 Search vendor "Huawei" for product "Espace U1981 Firmware" and version "v100r001c20" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace U1981 Search vendor "Huawei" for product "Espace U1981" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace U1981 Firmware Search vendor "Huawei" for product "Espace U1981 Firmware" | v100r001c30 Search vendor "Huawei" for product "Espace U1981 Firmware" and version "v100r001c30" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace U1981 Search vendor "Huawei" for product "Espace U1981" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace U1981 Firmware Search vendor "Huawei" for product "Espace U1981 Firmware" | v200r003c00 Search vendor "Huawei" for product "Espace U1981 Firmware" and version "v200r003c00" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace U1981 Search vendor "Huawei" for product "Espace U1981" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace U1981 Firmware Search vendor "Huawei" for product "Espace U1981 Firmware" | v200r003c20 Search vendor "Huawei" for product "Espace U1981 Firmware" and version "v200r003c20" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace U1981 Search vendor "Huawei" for product "Espace U1981" | - | - |
Safe
|
| Huawei Search vendor "Huawei" | Espace U1981 Firmware Search vendor "Huawei" for product "Espace U1981 Firmware" | v200r003c30 Search vendor "Huawei" for product "Espace U1981 Firmware" and version "v200r003c30" | - |
Affected
| in | Huawei Search vendor "Huawei" | Espace U1981 Search vendor "Huawei" for product "Espace U1981" | - | - |
Safe
|