CVE-2017-17281

Summary

SFTP module in Huawei DP300 V500R002C00; RP200 V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 has an out-of-bounds read vulnerability. A remote, authenticated attacker could exploit this vulnerability by sending specially crafted messages to a target device. Successful exploit may cause some information leak.

Affected Software

VendorProductVersion RangeStatus
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60DP300 V500R002C00affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60RP200 V600R006C00affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60TE30 V100R001C10affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60V500R002C00affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60V600R006C00affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60TE40 V500R002C00affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60TE50 V500R002C00affected
Huawei Technologies Co., Ltd.DP300; RP200; TE30; TE40; TE50; TE60TE60 V100R001C10affected

Weaknesses

  • out-of-bounds read

ADP Enrichment

CVE Program Container

Additional References

References