CVE-2017-17160Out-of-bounds Write in Huawei Ar120-s Firmware

CWE-787Out-of-bounds Write3 documents3 sources
Severity
5.9MEDIUMNVD
EPSS
0.3%
top 49.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
17
Huawei Ar120-s FirmwareHuawei Ar1200-s FirmwareHuawei Ar1200 Firmware+14 more
Timeline
PublishedFeb 15
Latest updateMay 14

Description

Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR150 V200R006C10, V200R007C00, V200R007C02, AR150-S V200R006C10, V200R007C00, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C02, AR200 V200R006C10, V200R007C00, AR200-S V200R006C10, V200R007C00, AR2200 V200R006C10, V200R006C13, V200R006C16PWE, V200R007C00, V200R007C02, AR2200-S V200R006C10, V200R007C00, V200R008C20, AR3200 V200R006C10, V200R0

CVSS vector

CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.2 | Impact: 3.6

Affected Packages17 packages

NVDhuawei/ar1200_firmware4 versions+3
NVDhuawei/ar1200-s_firmwarev200r006c10, v200r007c00, v200r008c20+2
NVDhuawei/ar150_firmwarev200r006c10, v200r007c00, v200r007c02+2
NVDhuawei/ar200_firmwarev200r006c10, v200r007c00+1
NVDhuawei/ar2200_firmware4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-p3gr-8h6r-849h: Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR2022-05-14
CVEList
CVE-2017-17160: Huawei AR120-S V200R006C10, V200R007C00, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C02, AR1200-S V200R006C10, V200R007C00, V200R008C20, AR2018-02-15
CVE-2017-17160 — Out-of-bounds Write in Huawei | cvebase