CVE-2017-15353

Name of the Vulnerable Software and Affected Versions: Huawei DP300 versions V500R002C00 through V600R006C00 Huawei RP200 version V500R002C00 Huawei RSE6500 version V500R002C00 Huawei TE30 versions V100R001C02 through V100R001C10 Huawei TE30 version V500R002C00 Huawei TE30 version V600R006C00 Huawei TE40 versions V500R002C00 through V600R006C00 Huawei TE50 versions V500R002C00 through V600R006C00 Huawei TE60 versions V100R001C01 through V100R001C10 Huawei TE60 versions V500R002C00 through V600R006C00 Huawei TX50 versions V500R002C00 through V600R006C00 Huawei VP9660 version V500R002C00 Huawei VP9660 version V500R002C10 Huawei ViewPoint 8660 version V100R008C03 Huawei ViewPoint 9030 versions V100R011C02 through V100R011C03

Description: The issue is caused by an out-of-bounds read vulnerability due to insufficient input validation. An attacker must control the peer device and send specially crafted messages to the affected products. Successful exploitation may cause service abnormalities.

Recommendations: For Huawei DP300 version V500R002C00, update to a version later than V600R006C00. For Huawei RP200 version V500R002C00, update to a version later than V500R002C00. For Huawei RSE6500 version V500R002C00, update to a version later than V500R002C00. For Huawei TE30 versions V100R001C02 through V100R001C10, update to a version later than V100R001C10. For Huawei TE30 version V500R002C00, update to a version later than V600R006C00. For Huawei TE30 version V600R006C00, update to a version later than V600R006C00. For Huawei TE40 versions V500R002C00 through V600R006C00, update to a version later than V600R006C00. For Huawei TE50 versions V500R002C00 through V600R006C00, update to a version later than V600R006C00. For Huawei TE60 versions V100R001C01 through V100R001C10, update to a version later than V100R001C10. For Huawei TE60 versions V500R002C00 through V600R006C00, update to a version later than V600R006C00. For Huawei TX50 versions V500R002C00 through V600R006C00, update to a version later than V600R006C00. For Huawei VP9660 version V500R002C00, update to a version later than V500R002C10. For Huawei VP9660 version V500R002C10, update to a version later than V500R002C10. For Huawei ViewPoint 8660 version V100R008C03, update to a version later than V100R008C03. For Huawei ViewPoint 9030 versions V100R011C02 through V100R011C03, update to a version later than V100R011C03.