Описание
Уязвимость встроенного микропрограммного обеспечения службы IP-стек сетевых коммутаторов Huawei Campus серии S2300, S2700, S3300, S3700, S5300EI, S5700EI, S5300SI, S5700SI, S5300HI, S5700HI S6300EI, S6700EI, S5710HI, S5300LI, S5700LI, S2350EI, S2750EI, S5720HI, S7700, S9300, S9700 существует из-за недостаточной проверки входных IP-параметров. Эксплуатация уязвимости может позволить нарушителю, действующему удалённо, вызвать отказ в обслуживании и перезагрузку устройства при помощи специально сформированного ICMP-запроса
Вендор
Huawei Technologies Co., Ltd.
Наименование ПО
Huawei Campus S2300
Huawei Campus S2700
Huawei Campus S3300
Huawei Campus S3700
Huawei Campus S5300EI
Huawei Campus S5700EI
Huawei Campus S5300SI
Huawei Campus S5700SI
Huawei Campus S5300HI
Huawei Campus S5700HI
Huawei Campus S6300EI
Huawei Campus S6700EI
Huawei Campus S5710HI
Huawei Campus S5300LI
Huawei Campus S5700LI
Huawei Campus S2350EI
Huawei Campus S2750EI
Huawei Campus S5720HI
Huawei Campus S7700
Huawei Campus S9300
Huawei Campus S9700
Версия ПО
V100R006C00 (Huawei Campus S2300)
V100R006C03 (Huawei Campus S2300)
V100R006C05 (Huawei Campus S2300)
V100R006C00 (Huawei Campus S2700)
V100R006C03 (Huawei Campus S2700)
V100R006C05 (Huawei Campus S2700)
V100R006C00 (Huawei Campus S3300)
V100R006C03 (Huawei Campus S3300)
V100R006C05 (Huawei Campus S3300)
V100R006C00 (Huawei Campus S3700)
V100R006C03 (Huawei Campus S3700)
V100R006C05 (Huawei Campus S3700)
V100R006C00 (Huawei Campus S5300EI)
V200R001C00SPC300 (Huawei Campus S5300EI)
V200R002C00SPC300 (Huawei Campus S5300EI)
V200R003C00SPC300 (Huawei Campus S5300EI)
V200R005C00SPC300 (Huawei Campus S5300EI)
V100R006C00 (Huawei Campus S5700EI)
V200R001C00SPC300 (Huawei Campus S5700EI)
V200R002C00SPC300 (Huawei Campus S5700EI)
V200R003C00SPC300 (Huawei Campus S5700EI)
V200R005C00SPC300 (Huawei Campus S5700EI)
Huawei Campus S5300SI (Huawei Campus S5300SI)
V200R001C00SPC300 (Huawei Campus S5300SI)
V100R006C00 (Huawei Campus S5300SI)
V200R002C00SPC300 (Huawei Campus S5300SI)
V200R003C00SPC300 (Huawei Campus S5300SI)
V200R005C00SPC300 (Huawei Campus S5300SI)
V100R006C00 (Huawei Campus S5700SI)
V200R001C00SPC300 (Huawei Campus S5700SI)
V200R002C00SPC300 (Huawei Campus S5700SI)
V200R003C00SPC300 (Huawei Campus S5700SI)
V200R005C00SPC300 (Huawei Campus S5700SI)
V200R001C00SPC300 (Huawei Campus S5300HI)
V200R002C00SPC300 (Huawei Campus S5300HI)
V200R003C00SPC300 (Huawei Campus S5300HI)
V200R005C00SPC300 (Huawei Campus S5300HI)
V200R001C00SPC300 (Huawei Campus S5700HI)
V200R002C00SPC300 (Huawei Campus S5700HI)
V200R003C00SPC300 (Huawei Campus S5700HI)
V200R005C00SPC300 (Huawei Campus S5700HI)
V200R001C00SPC300 (Huawei Campus S6300EI)
V200R002C00SPC300 (Huawei Campus S6300EI)
V200R003C00SPC300 (Huawei Campus S6300EI)
V200R005C00SPC300 (Huawei Campus S6300EI)
V200R001C00SPC300 (Huawei Campus S6700EI)
V200R002C00SPC300 (Huawei Campus S6700EI)
V200R003C00SPC300 (Huawei Campus S6700EI)
V200R005C00SPC300 (Huawei Campus S6700EI)
V200R001C00SPC300 (Huawei Campus S5710HI)
V200R002C00SPC300 (Huawei Campus S5710HI)
V200R003C00SPC300 (Huawei Campus S5710HI)
V200R005C00SPC300 (Huawei Campus S5710HI)
V200R001C00SPC300 (Huawei Campus S5300LI)
V200R002C00SPC300 (Huawei Campus S5300LI)
V200R003C00SPC300 (Huawei Campus S5300LI)
V200R005C00SPC300 (Huawei Campus S5300LI)
V200R006C00SPC500 (Huawei Campus S5300LI)
V200R007C00SPC500 (Huawei Campus S5300LI)
V200R001C00SPC300 (Huawei Campus S5700LI)
V200R002C00SPC300 (Huawei Campus S5700LI)
V200R003C00SPC300 (Huawei Campus S5700LI)
V200R005C00SPC300 (Huawei Campus S5700LI)
V200R006C00SPC500 (Huawei Campus S5700LI)
V200R007C00SPC500 (Huawei Campus S5700LI)
V200R001C00SPC300 (Huawei Campus S2350EI)
V200R002C00SPC300 (Huawei Campus S2350EI)
V200R003C00SPC300 (Huawei Campus S2350EI)
V200R005C00SPC300 (Huawei Campus S2350EI)
V200R006C00SPC500 (Huawei Campus S2350EI)
V200R007C00SPC500 (Huawei Campus S2350EI)
V200R001C00SPC300 (Huawei Campus S2750EI)
V200R002C00SPC300 (Huawei Campus S2750EI)
V200R003C00SPC300 (Huawei Campus S2750EI)
V200R005C00SPC300 (Huawei Campus S2750EI)
V200R006C00SPC500 (Huawei Campus S2750EI)
V200R007C00SPC500 (Huawei Campus S2750EI)
V200R006C00SPC500 (Huawei Campus S5720HI)
V200R007C00SPC500 (Huawei Campus S5720HI)
V200R001C00SPC300 (Huawei Campus S7700)
V200R002C00SPC300 (Huawei Campus S7700)
V200R003C00SPC500 (Huawei Campus S7700)
V200R005C00SPC300 (Huawei Campus S7700)
V200R006C00SPC500 (Huawei Campus S7700)
V200R007C00SPC500 (Huawei Campus S7700)
V200R001C00SPC300 (Huawei Campus S9300)
V200R002C00SPC300 (Huawei Campus S9300)
V200R003C00SPC500 (Huawei Campus S9300)
V200R005C00SPC300 (Huawei Campus S9300)
V200R006C00SPC500 (Huawei Campus S9300)
V200R007C00SPC500 (Huawei Campus S9300)
V200R001C00SPC300 (Huawei Campus S9700)
V200R002C00SPC300 (Huawei Campus S9700)
V200R003C00SPC500 (Huawei Campus S9700)
V200R005C00SPC300 (Huawei Campus S9700)
V200R006C00SPC500 (Huawei Campus S9700)
V200R007C00SPC500 (Huawei Campus S9700)
Тип ПО
ПО сетевого программно-аппаратного средства
Операционные системы и аппаратные платформы
-
Уровень опасности уязвимости
Высокий уровень опасности (базовая оценка CVSS 2.0 составляет 7,8)
Возможные меры по устранению уязвимости
Использование рекомендаций: http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-427449.htm
Статус уязвимости
Подтверждена производителем
Наличие эксплойта
Данные уточняются
Информация об устранении
Уязвимость устранена
Идентификаторы других систем описаний уязвимостей
- CVE
EPSS
Процентиль: 51%
0.00281
Низкий
7.8 High
CVSS2
Связанные уязвимости
CVSS3: 7.5
nvd
больше 8 лет назад
The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message.
CVSS3: 7.5
github
больше 3 лет назад
The IP stack in multiple Huawei Campus series switch models allows remote attackers to cause a denial of service (reboot) via a crafted ICMP request message.
EPSS
Процентиль: 51%
0.00281
Низкий
7.8 High
CVSS2