CVE-2017-8163

CWE-125Out-of-bounds Read3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 60.20%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
17
Huawei Ar120-s FirmwareHuawei Ar1200-s FirmwareHuawei Ar1200 Firmware+14 more
Timeline
PublishedNov 22
Latest updateMay 17

Description

AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR1200-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR150 with software V200R006C10, V200R007C00, V200R007C01, V200R007C02, V200R008C20, V200R008C30,AR150-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR160 with software V200R006C10, V200R006C12, V200R007C00, V200R007C01,

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages17 packages

NVDhuawei/ar1200_firmware7 versions+6
NVDhuawei/ar1200-s_firmware4 versions+3
NVDhuawei/ar150_firmware6 versions+5
NVDhuawei/ar200_firmware5 versions+4
NVDhuawei/ar2200_firmware8 versions+7

🔴Vulnerability Details

2
GHSA
GHSA-xmhq-cq4f-9gm2: AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V2002022-05-17
CVEList
CVE-2017-8163: AR120-S with software V200R006C10, V200R007C00, V200R008C20, V200R008C30,AR1200 with software V200R006C10, V200R006C13, V200R007C00, V200R007C01, V2002017-11-22
CVE-2017-8163 (MEDIUM CVSS 6.5) | AR120-S with software V200R006C10 | cvebase.io