Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

nvd логотип

CVE-2017-17311

Опубликовано: 21 авг. 2018
Источник: nvd
CVSS3: 7.5
CVSS2: 7.8
EPSS Низкий

Описание

Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted packets to the affected device to exploit these vulnerabilities. Successful exploit the vulnerability could lead to device deny of service.

Ссылки

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:usg2205bsr_firmware:v300r001c10spc600:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg2205bsr:-:*:*:*:*:*:*:*
Конфигурация 2

Одновременно

cpe:2.3:o:huawei:usg2220bsr_firmware:v300r001c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg2220bsr:-:*:*:*:*:*:*:*
Конфигурация 3

Одновременно

cpe:2.3:o:huawei:usg5120bsr_firmware:v300r001c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg5120bsr:-:*:*:*:*:*:*:*
Конфигурация 4

Одновременно

cpe:2.3:o:huawei:usg5150bsr_firmware:v300r001c00:*:*:*:*:*:*:*
cpe:2.3:h:huawei:usg5150bsr:-:*:*:*:*:*:*:*

EPSS

Процентиль: 32%
0.0012
Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-20

Связанные уязвимости

github логотип

GHSA-m3wg-6jv7-pjg8

CVSS3: 7.5
github
больше 3 лет назад

Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a DoS vulnerability in the IPSEC IKEv1 implementations of Huawei Firewall products. Due to improper handling of the malformed messages, an attacker may sent crafted packets to the affected device to exploit these vulnerabilities. Successful exploit the vulnerability could lead to device deny of service.

EPSS

Процентиль: 32%
0.0012
Низкий

7.5 High

CVSS3

7.8 High

CVSS2

Дефекты

CWE-20