CVE-2017-15333

CWE-20Improper Input Validation3 documents3 sources
Severity
4.7MEDIUM
EPSS
0.1%
top 77.08%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
7
Huawei Ecns210 TD FirmwareHuawei S12700 FirmwareHuawei S1700 Firmware+4 more
Timeline
PublishedFeb 15
Latest updateMay 14

Description

XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00, V200R003C00, V200R003C02, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,S6700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R005C02, V200R008C00, V200R009C00, V200R010C00,S7700 V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R009C00, V200R010C00,S9700 V200R001C00, V200R002C00,

CVSS vector

CVSS:3.0/AV:L/AC:H/PR:N/UI:R/S:U/C:N/I:N/A:HExploitability: 1.0 | Impact: 3.6

Affected Packages7 packages

NVDhuawei/s1700_firmwarev200r009c00, v200r010c00+1
NVDhuawei/s5700_firmware10 versions+9
NVDhuawei/s6700_firmware8 versions+7
NVDhuawei/s7700_firmware9 versions+8
NVDhuawei/s9700_firmware9 versions+8

🔴Vulnerability Details

2
GHSA
GHSA-89wg-4vg7-4787: XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00, V200R003C00, V202022-05-14
CVEList
CVE-2017-15333: XML parser in Huawei S12700 V200R005C00,S1700 V200R009C00, V200R010C00,S3700 V100R006C03, V100R006C05,S5700 V200R001C00, V200R002C00, V200R003C00, V202018-02-15
CVE-2017-15333 (MEDIUM CVSS 4.7) | XML parser in Huawei S12700 V200R00 | cvebase.io