CVE-2017-17142

CWE-119 — Buffer Overflow3 documents3 sources

Severity

5.3MEDIUM

EPSS

0.2%

top 60.83%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Dp300 Firmware Huawei Espace U1960 Firmware Huawei Espace U1981 Firmware +9 more

Timeline

PublishedMar 5

Latest updateMay 14

Description

SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; RSE6500 V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC300T; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00T; TE30 V100R001C10; V100R001C10SPC100; V100R001C10SPC200B010; V100R001C10SPC30…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages12 packages

▶NVDhuawei/espace_u1960_firmwarev200r003c30spc200

▶NVDhuawei/espace_u1981_firmwarev100r001c20spc700, v200r003c20spca00+1

▶NVDhuawei/viewpoint_9030_firmware10 versions+9

▶NVDhuawei/te30_firmware15 versions+14

▶NVDhuawei/te40_firmware6 versions+5

🔴Vulnerability Details

GHSA

GHSA-6w4r-qj52-rwgj: SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC6↗2022-05-14

▶

CVEList

CVE-2017-17142: SIP module in Huawei DP300 V500R002C00; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC6↗2018-03-05

▶

External resources

NVD MITRE

Affected products12

Huawei Dp300 Firmwarevv500r002c00vv500r002c00spc100vv500r002c00spc200+7 more

Huawei Espace U1960 Firmwarevv200r003c30spc200

Huawei Espace U1981 Firmwarevv100r001c20spc700vv200r003c20spca00

Huawei Rp200 Firmwarevv500r002c00spc200vv600r006c00vv600r006c00spc200

Huawei Rse6500 Firmwarevv500r002c00spc100vv500r002c00spc200vv500r002c00spc300+5 more

Huawei Te30 Firmwarevv100r001c10vv100r001c10spc100vv100r001c10spc200b010+12 more

Huawei Te40 Firmwarevv500r002c00spc600vv500r002c00spc700vv500r002c00spc900+3 more

Huawei Te50 Firmwarevv500r002c00spc600vv500r002c00spc700vv500r002c00spcb00+2 more

Huawei Te60 Firmwarevv100r001c01spc100vv100r001c01spc107tb010vv100r001c10+22 more

Huawei Tp3106 Firmwarevv100r002c00vv100r002c00spc200vv100r002c00spc400+3 more

Disclosure

PublishedMar 5, 2018

Latest updateMay 14, 2022