CVE-2017-15327

Name of the Vulnerable Software and Affected Versions: S12700 versions V200R005C00 through V200R010C00 S7700 versions V200R001C00 through V200R010C00 S9700 versions V200R001C00 through V200R010C00

Description: The system incorrectly performs an authorization check when a normal user attempts to access certain information which is supposed to be accessed only by an authenticated user. Successful exploit could cause information disclosure.

Recommendations: For S12700 versions V200R005C00 through V200R010C00, restrict access to sensitive information until a patch is available. For S7700 versions V200R001C00 through V200R010C00, consider disabling access to certain features that require authenticated user access until the issue is resolved. For S9700 versions V200R001C00 through V200R010C00, limit user privileges to prevent unauthorized access to sensitive information. At the moment, there is no information about a newer version that contains a fix for this vulnerability.