CVE-2017-15318
published 2017-12-22CVE-2017-15318: RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.
Affected
24 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | rp200_firmware | — | — |
| huawei | rp200_firmware | — | — |
| huawei | te30_firmware | — | — |
| huawei | te30_firmware | — | — |
| huawei | te30_firmware | — | — |
| huawei | te40_firmware | — | — |
| huawei | te40_firmware | — | — |
| huawei | te50_firmware | — | — |
| huawei | te50_firmware | — | — |
| huawei | te60_firmware | — | — |
| huawei | te60_firmware | — | — |
| huawei | te60_firmware | — | — |
| huawei_technologies_co_ltd | rp200 | — | — |
| huawei_technologies_co_ltd | rp200 | — | — |
| huawei_technologies_co_ltd | te30 | — | — |
| huawei_technologies_co_ltd | te30 | — | — |
| huawei_technologies_co_ltd | te30 | — | — |
| huawei_technologies_co_ltd | te40 | — | — |
| huawei_technologies_co_ltd | te40 | — | — |
| huawei_technologies_co_ltd | te50 | — | — |
| huawei_technologies_co_ltd | te50 | — | — |
| huawei_technologies_co_ltd | te60 | — | — |
| huawei_technologies_co_ltd | te60 | — | — |
| huawei_technologies_co_ltd | te60 | — | — |