CVE-2017-17311

Name of the Vulnerable Software and Affected Versions: Huawei Firewall products USG2205BSR version V300R001C10SPC600 Huawei Firewall products USG2220BSR version V300R001C00 Huawei Firewall products USG5120BSR version V300R001C00 Huawei Firewall products USG5150BSR version V300R001C00

Description: The issue is related to the IPSEC IKEv1 implementations of Huawei Firewall products, where improper handling of malformed messages can be exploited. An attacker may send crafted packets to the affected device, potentially leading to a denial of service.

Recommendations: For USG2205BSR version V300R001C10SPC600, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations. For USG2220BSR version V300R001C00, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations. For USG5120BSR version V300R001C00, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations. For USG5150BSR version V300R001C00, update the software to a version that properly handles malformed messages in IPSEC IKEv1 implementations.