CVE-2017-17297

CWE-119 — Buffer Overflow3 documents3 sources

Severity

5.3MEDIUM

EPSS

0.2%

top 62.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Huawei Ar120-s Firmware Huawei Ar1200-s Firmware Huawei Ar1200 Firmware +40 more

Timeline

PublishedFeb 15

Latest updateMay 14

Description

Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR1200-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR150 V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR150-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR160 V200R006C10, V200R006C12, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30, AR200 V200R006C10, V200R007C00, V…

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:LExploitability: 3.9 | Impact: 1.4

Affected Packages43 packages

▶NVDhuawei/ar1200_firmware7 versions+6

▶NVDhuawei/ar1200-s_firmware4 versions+3

▶NVDhuawei/ngfw_module_firmware7 versions+6

▶NVDhuawei/secospace_usg6300_firmware7 versions+6

▶NVDhuawei/secospace_usg6500_firmware7 versions+6

🔴Vulnerability Details

GHSA

GHSA-28hp-hr28-jrcx: Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20↗2022-05-14

▶

CVEList

CVE-2017-17297: Huawei AR120-S V200R006C10, V200R007C00, V200R008C20, V200R008C30, AR1200 V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20↗2018-02-15

▶

External resources

NVD MITRE

Affected products43

Huawei Ar120-s Firmwarevv200r006c10vv200r007c00vv200r008c20+1 more

Huawei Ar1200 Firmwarevv200r006c10vv200r006c13vv200r007c00+4 more

Huawei Ar1200-s Firmwarevv200r006c10vv200r007c00vv200r008c20+1 more

Huawei Ar150 Firmwarevv200r006c10vv200r007c00vv200r007c01+3 more

Huawei Ar150-s Firmwarevv200r006c10vv200r007c00vv200r008c20+1 more

Huawei Ar160 Firmwarevv200r006c10vv200r006c12vv200r007c00+4 more

Huawei Ar200 Firmwarevv200r006c10vv200r007c00vv200r007c01+2 more

Huawei Ar200-s Firmwarevv200r006c10vv200r007c00vv200r008c20+1 more

Huawei Ar2200 Firmwarevv200r006c10vv200r006c13vv200r006c16+5 more

Huawei Ar2200-s Firmwarevv200r006c10vv200r007c00vv200r008c20+1 more

Disclosure

PublishedFeb 15, 2018

Latest updateMay 14, 2022