| Title | 複数の Huawei 製品における入力確認に関する脆弱性 |
|---|---|
| Summary | 複数の Huawei 製品には、入力確認に関する脆弱性が存在します。 |
| Possible impacts | サービス運用妨害 (DoS) 状態にされる可能性があります。 |
| Solution | ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。 |
| Publication Date | Dec. 4, 2017, midnight |
| Registration Date | June 19, 2018, 5:43 p.m. |
| Last Update | June 19, 2018, 5:43 p.m. |
| CVSS3.0 : 警告 | |
| Score | 5.3 |
|---|---|
| Vector | CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
| CVSS2.0 : 警告 | |
| Score | 5 |
|---|---|
| Vector | AV:N/AC:L/Au:N/C:N/I:N/A:P |
| Huawei |
| DP300 ファームウェア |
| RP200 ファームウェア |
| TE30 ファームウェア |
| TE40 ファームウェア |
| TE50 ファームウェア |
| TE60 ファームウェア |
| No | Changed Details | Date of change |
|---|---|---|
| 1 | [2018年06月19日] 掲載 |
June 19, 2018, 5:43 p.m. |
| Summary | SCCPX module in Huawei DP300 V500R002C00, RP200 V500R002C00, V600R006C00, TE30 V100R001C10, V500R002C00, V600R006C00, TE40 V500R002C00, V600R006C00, TE50 V500R002C00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 has an invalid memory access vulnerability. An unauthenticated, remote attacker may send specially crafted packets to the affected products. Due to insufficient validation of packets, successful exploit may cause some services abnormal. |
|---|---|
| Publication Date | April 12, 2018, 2:29 a.m. |
| Registration Date | Jan. 26, 2021, 1:19 p.m. |
| Last Update | Nov. 21, 2024, 12:17 p.m. |
| Configuration1 | or higher | or less | more than | less than | |
| cpe:2.3:o:huawei:dp300_firmware:v500r002c00spcb00:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:huawei:dp300:-:*:*:*:*:*:*:* | ||||
| Configuration2 | or higher | or less | more than | less than | |
| cpe:2.3:o:huawei:rp200_firmware:v500r002c00:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:rp200_firmware:v600r006c00:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:huawei:rp200:-:*:*:*:*:*:*:* | ||||
| Configuration3 | or higher | or less | more than | less than | |
| cpe:2.3:o:huawei:te30_firmware:v100r001c10:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:te30_firmware:v500r002c00:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:te30_firmware:v600r006c00:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:huawei:te30:-:*:*:*:*:*:*:* | ||||
| Configuration4 | or higher | or less | more than | less than | |
| cpe:2.3:o:huawei:te40_firmware:v500r002c00:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:te40_firmware:v600r006c00:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:huawei:te40:-:*:*:*:*:*:*:* | ||||
| Configuration5 | or higher | or less | more than | less than | |
| cpe:2.3:o:huawei:te50_firmware:v500r002c00:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:te50_firmware:v600r006c00:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:huawei:te50:-:*:*:*:*:*:*:* | ||||
| Configuration6 | or higher | or less | more than | less than | |
| cpe:2.3:o:huawei:te60_firmware:v100r001c10:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:te60_firmware:v500r002c00:*:*:*:*:*:*:* | |||||
| cpe:2.3:o:huawei:te60_firmware:v600r006c00:*:*:*:*:*:*:* | |||||
| execution environment | |||||
| 1 | cpe:2.3:h:huawei:te60:-:*:*:*:*:*:*:* | ||||