Details of VAR-201711-0985

ID

VAR-201711-0985

CVE

CVE-2017-8147

TITLE

plural Huawei Vulnerability related to input validation in products

Trust: 0.8

sources: JVNDB: JVNDB-2017-010631

DESCRIPTION

AC6005 V200R006C10SPC200,AC6605 V200R006C10SPC200,AR1200 with software V200R005C10CP0582T, V200R005C10HP0581T, V200R005C20SPC026T,AR200 with software V200R005C20SPC026T,AR3200 V200R005C20SPC026T,CloudEngine 12800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 5800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 6800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 7800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 8800 with software V100R006C00, V200R001C00,E600 V200R008C00,S12700 with software V200R005C00, V200R006C00, V200R007C00, V200R008C00,S1700 with software V100R006C00, V100R007C00, V200R006C00,S2300 with software V100R005C00, V100R006C00, V100R006C03, V100R006C05, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00,S2700 with software V100R005C00, V100R006C00, V100R006C03, V100R006C05, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00,S5300 with software V100R005C00, V100R006C00, V100R006C01, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S5700 with software V100R005C00, V100R006C00, V100R006C01, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S6300 with software V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R008C00,S6700 with software V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S7700 with software V100R003C00, V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S9300 with software V100R001C00, V100R002C00, V100R003C00, V100R006C00, V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R008C10,S9700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00,Secospace USG6600 V500R001C00SPC050 have a MaxAge LSA vulnerability due to improper OSPF implementation. When the device receives special LSA packets, the LS (Link Status) age would be set to MaxAge, 3600 seconds. An attacker can exploit this vulnerability to poison the route table and launch a DoS attack. plural Huawei The product contains an input validation vulnerability.Service operation interruption (DoS) There is a possibility of being put into a state. HuaweiAC6005 and other products are all products of China Huawei. HuaweiAC6005 is an access control device. The CloudEngine 12800 is a data center switch device. The OSPF protocol of several Huawei products has a MaxAgeLSA vulnerability. The following products and versions are affected: Huawei AC6005 V200R006C10SPC200 Version; AC6605 V200R006C10SPC200 Version; AR1200 V200R005C10CP0582T Version, V200R005C10HP0581T Version, V200R005C20SPC026T Version; AR200 V200R005C20SPC026T Version; AR3200 V200R005C20SPC026T Version; CloudEngine 12800 V100R003C00 Version, V100R005C00 Version, V100R005C10 Version, V100R006C00 Version, V200R001C00 Version; CloudEngine 5800 V100R003C00 Version, V100R005C00 Version, V100R005C10 Version, V100R006C00 Version, V200R001C00 Version; CloudEngine 6800 V100R003C00 Version, V100R005C00 Version, V100R005C10 Version, V100R006C00 Version, V200R001C00 Version; CloudEngine 7800 V100R003C00 Version, V100R005C00 Version, V100R005C10 Version, V100R006C00 Version, V200R001C00 Version; CloudEngine 8800 V100R006C00, V200R001C00; E600 V200R008C00; S12700 V200R005C00, V200R006C00, V200R007C00, V200R008C00; S1700

Trust: 2.25

sources: NVD: CVE-2017-8147 // JVNDB: JVNDB-2017-010631 // CNVD: CNVD-2017-37678 // VULHUB: VHN-116350

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-37678

AFFECTED PRODUCTS

vendor:	huawei	model:	s9700	scope:	eq	version:	v200r003c00	Trust: 1.6
vendor:	huawei	model:	secospace usg6600	scope:	eq	version:	v500r001c30	Trust: 1.6
vendor:	huawei	model:	s9700	scope:	eq	version:	v200r006c00	Trust: 1.6
vendor:	huawei	model:	s9700	scope:	eq	version:	v200r001c00	Trust: 1.6
vendor:	huawei	model:	secospace usg6600	scope:	eq	version:	v500r001c20	Trust: 1.6
vendor:	huawei	model:	secospace usg6600	scope:	eq	version:	v500r001c00	Trust: 1.6
vendor:	huawei	model:	s9700	scope:	eq	version:	v200r008c00	Trust: 1.6
vendor:	huawei	model:	s9700	scope:	eq	version:	v200r002c00	Trust: 1.6
vendor:	huawei	model:	s9700	scope:	eq	version:	v200r005c00	Trust: 1.6
vendor:	huawei	model:	s9700	scope:	eq	version:	v200r007c00	Trust: 1.6
vendor:	huawei	model:	s9700 v200r008c00	scope:	-	version:	-	Trust: 1.2
vendor:	huawei	model:	s7700	scope:	eq	version:	v100r003c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 6800	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r001c01	Trust: 1.0
vendor:	huawei	model:	cloudengine 7800	scope:	eq	version:	v100r003c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 6800	scope:	eq	version:	v100r005c10	Trust: 1.0
vendor:	huawei	model:	cloudengine 5800	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v100r006c03	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v100r006c03	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	ac6605	scope:	eq	version:	v200r006c10spc200	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v100r006c01	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r003c10	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v100r006c05	Trust: 1.0
vendor:	huawei	model:	cloudengine 8800	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 12800	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 5800	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r005c01	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v100r003c00	Trust: 1.0
vendor:	huawei	model:	ar1200	scope:	eq	version:	v200r005c10cp0582t	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 5800	scope:	eq	version:	v100r005c10	Trust: 1.0
vendor:	huawei	model:	cloudengine 6800	scope:	eq	version:	v100r003c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r002c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 7800	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v100r001c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 5800	scope:	eq	version:	v100r003c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r005c02	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r005c02	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r002c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r003c02	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r003c10	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 12800	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r003c10	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r005c03	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r005c03	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r001c01	Trust: 1.0
vendor:	huawei	model:	cloudengine 12800	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 8800	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 12800	scope:	eq	version:	v100r005c10	Trust: 1.0
vendor:	huawei	model:	s1700	scope:	eq	version:	v100r007c00	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s12700	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r003c02	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 7800	scope:	eq	version:	v100r005c10	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r002c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	ar3200	scope:	eq	version:	v200r005c20spc026t	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r003c02	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	s12700	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v100r006c05	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r002c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r005c01	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	s12700	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	e600	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r003c10	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r003c10	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s12700	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 6800	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v200r001c01	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r008c10	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v100r006c01	Trust: 1.0
vendor:	huawei	model:	s1700	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r003c10	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	ar1200	scope:	eq	version:	v200r005c20spc026t	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s7700	scope:	eq	version:	v200r001c01	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v100r002c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 6800	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r008c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	s6300	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r007c00	Trust: 1.0
vendor:	huawei	model:	ar1200	scope:	eq	version:	v200r005c10hp0581t	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r002c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 5800	scope:	eq	version:	v200r001c00	Trust: 1.0
vendor:	huawei	model:	s2300	scope:	eq	version:	v200r003c02	Trust: 1.0
vendor:	huawei	model:	s2700	scope:	eq	version:	v200r003c02	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	ar200	scope:	eq	version:	v200r005c20spc026t	Trust: 1.0
vendor:	huawei	model:	cloudengine 7800	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	ac6005	scope:	eq	version:	v200r006c10spc200	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r003c02	Trust: 1.0
vendor:	huawei	model:	s1700	scope:	eq	version:	v200r006c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r002c00	Trust: 1.0
vendor:	huawei	model:	s6700	scope:	eq	version:	v200r003c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 7800	scope:	eq	version:	v100r005c00	Trust: 1.0
vendor:	huawei	model:	s9300	scope:	eq	version:	v100r006c00	Trust: 1.0
vendor:	huawei	model:	s5300	scope:	eq	version:	v200r005c00	Trust: 1.0
vendor:	huawei	model:	cloudengine 12800	scope:	eq	version:	v100r003c00	Trust: 1.0
vendor:	huawei	model:	s5700	scope:	eq	version:	v200r001c01	Trust: 1.0
vendor:	huawei	model:	ac6005	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	ac6605	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	ar1200	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	ar200	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	ar3200	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	cloudengine 12800	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	cloudengine 5800	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	cloudengine 6800	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	cloudengine 7800	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	cloudengine 8800	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	e600	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s12700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s1700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s2300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s2700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s5300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s5700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s6300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s6700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s7700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s9300	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	s9700	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	secospace usg6600	scope:	-	version:	-	Trust: 0.8
vendor:	huawei	model:	secospace usg6600 v500r001c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r003c00	scope:	eq	version:	12800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c00	scope:	eq	version:	12800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c10	scope:	eq	version:	12800	Trust: 0.6
vendor:	huawei	model:	s12700 v200r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9700 v200r001c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9700 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s12700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s12700 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s12700 v200r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v200r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9700 v200r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r006c00	scope:	eq	version:	12800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c00	scope:	eq	version:	5800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c10	scope:	eq	version:	5800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r006c00	scope:	eq	version:	5800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c00	scope:	eq	version:	6800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c10	scope:	eq	version:	6800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r006c00	scope:	eq	version:	6800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c00	scope:	eq	version:	7800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r005c10	scope:	eq	version:	7800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r006c00	scope:	eq	version:	7800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r006c00	scope:	eq	version:	8800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r003c00	scope:	eq	version:	5800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r003c00	scope:	eq	version:	6800	Trust: 0.6
vendor:	huawei	model:	cloudengine v100r003c00	scope:	eq	version:	7800	Trust: 0.6
vendor:	huawei	model:	cloudengine v200r001c00	scope:	eq	version:	12800	Trust: 0.6
vendor:	huawei	model:	cloudengine v200r001c00	scope:	eq	version:	6800	Trust: 0.6
vendor:	huawei	model:	cloudengine v200r001c00	scope:	eq	version:	7800	Trust: 0.6
vendor:	huawei	model:	cloudengine v200r001c00	scope:	eq	version:	8800	Trust: 0.6
vendor:	huawei	model:	ac6005 v200r006c10spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	ar1200 v200r005c10cp0582t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	ar200 v200r005c20spc026t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	ar3200 v200r005c20spc026t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	secospace usg6600 v500r001c20	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	secospace usg6600 v500r001c30	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	ac6605 v200r006c10spc200	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	ar1200 v200r005c10hp0581t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	ar1200 v200r005c20spc026t	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	cloudengine v200r001c00	scope:	eq	version:	5800	Trust: 0.6
vendor:	huawei	model:	e600 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s1700 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s1700 v100r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s1700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v100r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v100r006c05	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r003c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r003c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r005c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r005c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r005c03	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2300 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v100r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v100r006c03	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v100r006c05	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r003c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r003c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r005c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r005c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r005c03	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s2700 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v100r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v100r006c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r001c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r003c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r003c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r007c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5300 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v100r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v100r006c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r001c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r001c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r003c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r003c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s5700 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r001c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r003c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r003c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r005c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6300 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r001c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r003c02	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r003c10	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s6700 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v100r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v200r001c01	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s7700 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v100r001c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v100r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v100r003c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v100r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v200r002c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v200r006c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v200r008c00	scope:	-	version:	-	Trust: 0.6
vendor:	huawei	model:	s9300 v200r008c10	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2017-37678 // JVNDB: JVNDB-2017-010631 // CNNVD: CNNVD-201711-982 // NVD: CVE-2017-8147

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-8147
value:	HIGH
Trust: 1.0
NVD:	CVE-2017-8147
value:	HIGH
Trust: 0.8
CNVD:	CNVD-2017-37678
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201711-982
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-116350
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-8147
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-37678
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-116350
severity:	MEDIUM
baseScore:	5.0
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:P
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	PARTIAL
exploitabilityScore:	10.0
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-8147
baseSeverity:	HIGH
baseScore:	7.5
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-37678 // VULHUB: VHN-116350 // JVNDB: JVNDB-2017-010631 // CNNVD: CNNVD-201711-982 // NVD: CVE-2017-8147

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-116350 // JVNDB: JVNDB-2017-010631 // NVD: CVE-2017-8147

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201711-982

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-201711-982

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-010631

PATCH

title:	huawei-sa-20170720-01-ospf	url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170720-01-ospf-en	Trust: 0.8
title:	A patch for the MaxAgeLSA vulnerability exists in the OSPF protocol of various Huawei products.	url:	https://www.cnvd.org.cn/patchInfo/show/111227	Trust: 0.6
title:	Multiple Huawei Product security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=76692	Trust: 0.6

sources: CNVD: CNVD-2017-37678 // JVNDB: JVNDB-2017-010631 // CNNVD: CNNVD-201711-982

EXTERNAL IDS

db:	NVD	id:	CVE-2017-8147	Trust: 3.1
db:	JVNDB	id:	JVNDB-2017-010631	Trust: 0.8
db:	CNNVD	id:	CNNVD-201711-982	Trust: 0.7
db:	CNVD	id:	CNVD-2017-37678	Trust: 0.6
db:	VULHUB	id:	VHN-116350	Trust: 0.1

sources: CNVD: CNVD-2017-37678 // VULHUB: VHN-116350 // JVNDB: JVNDB-2017-010631 // CNNVD: CNNVD-201711-982 // NVD: CVE-2017-8147

REFERENCES

url:	http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170720-01-ospf-en	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-8147	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-8147	Trust: 0.8
url:	https://www.huawei.com/cn/psirt/security-advisories/huawei-sa-20170720-01-ospf-cn	Trust: 0.6

sources: CNVD: CNVD-2017-37678 // VULHUB: VHN-116350 // JVNDB: JVNDB-2017-010631 // CNNVD: CNNVD-201711-982 // NVD: CVE-2017-8147

SOURCES

db:	CNVD	id:	CNVD-2017-37678
db:	VULHUB	id:	VHN-116350
db:	JVNDB	id:	JVNDB-2017-010631
db:	CNNVD	id:	CNNVD-201711-982
db:	NVD	id:	CVE-2017-8147

LAST UPDATE DATE

2024-11-23T22:59:08.890000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-37678	date:	2017-12-20T00:00:00
db:	VULHUB	id:	VHN-116350	date:	2017-12-08T00:00:00
db:	JVNDB	id:	JVNDB-2017-010631	date:	2017-12-20T00:00:00
db:	CNNVD	id:	CNNVD-201711-982	date:	2020-11-06T00:00:00
db:	NVD	id:	CVE-2017-8147	date:	2024-11-21T03:33:24.850

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-37678	date:	2017-12-20T00:00:00
db:	VULHUB	id:	VHN-116350	date:	2017-11-22T00:00:00
db:	JVNDB	id:	JVNDB-2017-010631	date:	2017-12-20T00:00:00
db:	CNNVD	id:	CNNVD-201711-982	date:	2017-11-23T00:00:00
db:	NVD	id:	CVE-2017-8147	date:	2017-11-22T19:29:03.257