CVE-2017-8201

CWE-7723 documents3 sources
Severity
6.5MEDIUM
EPSS
0.2%
top 53.87%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
3
Huawei MAX Presence FirmwareHuawei Tp3106 FirmwareHuawei Tp3206 Firmware
Timeline
PublishedNov 22
Latest updateMay 13

Description

MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an a memory leak vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit could cause a memory leak and eventual denial of service (DoS) condition.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages3 packages

NVDhuawei/tp3106_firmwarev100r002c00
NVDhuawei/tp3206_firmwarev100r002c00

🔴Vulnerability Details

2
GHSA
GHSA-wmp9-g2j8-5f3p: MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an a memory leak vulnerability in H323 protocol2022-05-13
CVEList
CVE-2017-8201: MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an a memory leak vulnerability in H323 protocol2017-11-22
CVE-2017-8201 (MEDIUM CVSS 6.5) | MAX PRESENCE V100R001C00 | cvebase.io