CVE-2017-8200

CWE-125Out-of-bounds Read3 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 53.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Huawei MAX Presence FirmwareHuawei Tp3106 FirmwareHuawei Tp3206 Firmware
Timeline
PublishedNov 22
Latest updateMay 17

Description

MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause process reboot.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

NVDhuawei/tp3106_firmwarev100r002c00
NVDhuawei/tp3206_firmwarev100r002c00

🔴Vulnerability Details

2
GHSA
GHSA-gxx2-pxmv-7vwj: MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol2022-05-17
CVEList
CVE-2017-8200: MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol2017-11-22
CVE-2017-8200 (MEDIUM CVSS 6.5) | MAX PRESENCE V100R001C00 | cvebase.io