CVE-2018-7920
published 2018-04-19CVE-2018-7920: Huawei AR1200 V200R006C10SPC300, AR160 V200R006C10SPC300, AR200 V200R006C10SPC300, AR2200 V200R006C10SPC300, AR3200 V200R006C10SPC300 devices have an improper…
high7.5CVSS 3.0
AVNACLPRNUINSUCNINAH
Huawei AR1200 V200R006C10SPC300, AR160 V200R006C10SPC300, AR200 V200R006C10SPC300, AR2200 V200R006C10SPC300, AR3200 V200R006C10SPC300 devices have an improper resource management vulnerability. Due to the improper implementation of ACL mechanism, a remote attacker may send TCP messages to the management interface of the affected device to exploit this vulnerability. Successful exploit could exhaust the socket resource of management interface, leading to a DoS condition.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| huawei | ar1200_firmware | — | — |
| huawei | ar160_firmware | — | — |
| huawei | ar200_firmware | — | — |
| huawei | ar2200_firmware | — | — |
| huawei | ar3200_firmware | — | — |