CVE-2017-17305
N/A
N/A
Summary
Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a Bleichenbacher Oracle vulnerability in the IPSEC IKEv1 implementations. Remote attackers can decrypt IPSEC tunnel ciphertext data by leveraging a Bleichenbacher RSA padding oracle. Cause a Bleichenbacher oracle attack. Successful exploit this vulnerability can impact IPSec tunnel security.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Huawei Technologies Co., Ltd. | USG2205BSR; USG2220BSR; USG5120BSR; USG5150BSR | USG2205BSR V300R001C10SPC600 | affected |
| Huawei Technologies Co., Ltd. | USG2205BSR; USG2220BSR; USG5120BSR; USG5150BSR | USG2220BSR V300R001C00 | affected |
| Huawei Technologies Co., Ltd. | USG2205BSR; USG2220BSR; USG5120BSR; USG5150BSR | USG5120BSR V300R001C00 | affected |
| Huawei Technologies Co., Ltd. | USG2205BSR; USG2220BSR; USG5120BSR; USG5150BSR | USG5150BSR V300R001C00 | affected |
Weaknesses
- Bleichenbacher Oracle
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.