CVE-2017-17133

CWE-476NULL Pointer Dereference3 documents3 sources
Severity
5.5MEDIUM
EPSS
0.0%
top 94.32%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Huawei Technologies Co., Ltd. Vp9660Huawei Vp9660 Firmware
Timeline
PublishedMar 5
Latest updateMay 14

Description

Huawei VP9660 V500R002C10 has a null pointer reference vulnerability in license module due to insufficient verification. An authenticated local attacker could place a malicious license file into system which cause memory null pointer accessing and related processing crash. The attacker can exploit this vulnerability to cause a denial of service.

CVSS vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 1.8 | Impact: 3.6

Affected Packages2 packages

NVDhuawei/vp9660_firmwarev500r002c10

🔴Vulnerability Details

2
GHSA
GHSA-3689-2458-gmcv: Huawei VP9660 V500R002C10 has a null pointer reference vulnerability in license module due to insufficient verification2022-05-14
CVEList
CVE-2017-17133: Huawei VP9660 V500R002C10 has a null pointer reference vulnerability in license module due to insufficient verification2018-03-05
CVE-2017-17133 (MEDIUM CVSS 5.5) | Huawei VP9660 V500R002C10 has a nul | cvebase.io