Loading HuntDB...
Hunt
Vulnerability Intelligence by wss.sh
Home Daily Briefings High Impact CVEs Recent Exploits KEV Catalog GitHub Advisories Latest Updates Security News
Sign In Sign Up

CVE-2017-15318

UNKNOWN
Published 2017-12-22T17:00:00Z
Actions:

Expert Analysis

Professional remediation guidance

Get tailored security recommendations from our analyst team for CVE-2017-15318. We'll provide specific mitigation strategies based on your environment and risk profile.

No CVSS data available

Description

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

Available Exploits

No exploits available for this CVE.

Related News

No news articles found for this CVE.

Affected Products

Huawei Technologies Co., Ltd.

RP200

Affected Versions:

V500R002C00 V600R006C00
Huawei Technologies Co., Ltd.

TE30

Affected Versions:

V100R001C10 V500R002C00 V600R006C00
Huawei Technologies Co., Ltd.

TE40

Affected Versions:

V500R002C00 V600R006C00
Huawei Technologies Co., Ltd.

TE50

Affected Versions:

V500R002C00 V600R006C00
Huawei Technologies Co., Ltd.

TE60

Affected Versions:

V100R001C10 V500R002C00 V600R006C00

GitHub Security Advisories

Community-driven vulnerability intelligence from GitHub

⚠ Unreviewed HIGH

GHSA-vwh9-3hjh-49rp

Advisory Details

RP200 V500R002C00, V600R006C00; TE30 V100R001C10, V500R002C00, V600R006C00; TE40 V500R002C00, V600R006C00; TE50 V500R002C00, V600R006C00; TE60 V100R001C10, V500R002C00, V600R006C00 have an out-of-bounds read vulnerabilities in some Huawei products. Due to insufficient input validation, a remote attacker could exploit these vulnerabilities by sending specially crafted SS7 related packets to the target devices. Successful exploit will cause out-of-bounds read and possibly crash the system.

CVSS Scoring

CVSS Score

7.5

CVSS Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References

ADVISORY https://nvd.nist.gov/vuln/detail/CVE-2017-15318
WEB http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171101-01-sccpx-en

Advisory provided by GitHub Security Advisory Database. Published: May 14, 2022, Modified: May 14, 2022

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171101-01-sccpx-en
Published: 2017-12-22T17:00:00Z
Last Modified: 2024-09-16T16:58:54.555Z
Copied to clipboard!