PT-2017-14001 · Huawei · Huawei S6700+2
Publicado
2017-12-06
·
Atualizado
2018-01-17
·
CVE-2017-15324
CVSS v2.0
7.8
Alta
| Vetor | AV:N/AC:L/Au:N/C:N/I:N/A:C |
Name of the Vulnerable Software and Affected Versions
Huawei S5700 and S6700 version V200R005C00
Description
The issue is due to insufficient validation of the Network Quality Analysis (NQA) packets. A remote attacker could exploit this by sending malformed NQA packets to the target device. Successful exploitation could make the device restart.
Recommendations
For Huawei S5700 and S6700 version V200R005C00, consider disabling the reception of NQA packets as a temporary workaround until a patch is available. Restrict access to the device to minimize the risk of exploitation.
Correção
DoS
RCE
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Huawei S5700
Huawei S6700
Huawei Vrp