CVE-2017-17202

CWE-125 — Out-of-bounds Read3 documents3 sources

Severity

7.5HIGH

EPSS

0.1%

top 64.81%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Ar120-s Firmware Huawei Ar1200-s Firmware Huawei Ar1200 Firmware +14 more

Timeline

PublishedFeb 15

Latest updateMay 14

Description

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R005C32, V200R007C00, V200R008C20, V200R008C30, AR160 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R00…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages17 packages

▶NVDhuawei/ar1200_firmware7 versions+6

▶NVDhuawei/ar1200-s_firmware5 versions+4

▶NVDhuawei/ar150_firmware7 versions+6

▶NVDhuawei/ar200_firmware6 versions+5

▶NVDhuawei/ar2200_firmware6 versions+5

🔴Vulnerability Details

GHSA

GHSA-pxwv-vq3c-q2vm: Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02↗2022-05-14

▶

CVEList

CVE-2017-17202: Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R005C32, V200R006C10, V200R007C00, V200R007C01, V200R007C02↗2018-02-15

▶

External resources

NVD MITRE

Affected products17

Huawei Ar120-s Firmwarevv200r005c32vv200r006c10vv200r007c00+2 more

Huawei Ar1200 Firmwarevv200r005c32vv200r006c10vv200r007c00+4 more

Huawei Ar1200-s Firmwarevv200r005c32vv200r006c10vv200r007c00+2 more

Huawei Ar150 Firmwarevv200r005c32vv200r006c10vv200r007c00+4 more

Huawei Ar150-s Firmwarevv200r005c32vv200r007c00vv200r008c20+1 more

Huawei Ar160 Firmwarevv200r005c32vv200r006c10vv200r007c00+4 more

Huawei Ar200 Firmwarevv200r005c32vv200r006c10vv200r007c00+3 more

Huawei Ar200-s Firmwarevv200r005c32vv200r006c10vv200r007c00+2 more

Huawei Ar2200 Firmwarevv200r006c10vv200r007c00vv200r007c01+3 more

Huawei Ar2200-s Firmwarevv200r005c32vv200r006c10vv200r007c00+2 more

Disclosure

PublishedFeb 15, 2018

Latest updateMay 14, 2022