NVD Vulnerability Detail
Search Exploit, PoC
CVE-2017-8147
Summary

AC6005 V200R006C10SPC200,AC6605 V200R006C10SPC200,AR1200 with software V200R005C10CP0582T, V200R005C10HP0581T, V200R005C20SPC026T,AR200 with software V200R005C20SPC026T,AR3200 V200R005C20SPC026T,CloudEngine 12800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 5800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 6800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 7800 with software V100R003C00, V100R005C00, V100R005C10, V100R006C00, V200R001C00,CloudEngine 8800 with software V100R006C00, V200R001C00,E600 V200R008C00,S12700 with software V200R005C00, V200R006C00, V200R007C00, V200R008C00,S1700 with software V100R006C00, V100R007C00, V200R006C00,S2300 with software V100R005C00, V100R006C00, V100R006C03, V100R006C05, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00,S2700 with software V100R005C00, V100R006C00, V100R006C03, V100R006C05, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R005C01, V200R005C02, V200R005C03, V200R006C00, V200R007C00, V200R008C00,S5300 with software V100R005C00, V100R006C00, V100R006C01, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S5700 with software V100R005C00, V100R006C00, V100R006C01, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S6300 with software V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R008C00,S6700 with software V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R003C02, V200R003C10, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S7700 with software V100R003C00, V100R006C00, V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00,S9300 with software V100R001C00, V100R002C00, V100R003C00, V100R006C00, V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00, V200R008C10,S9700 with software V200R001C00, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R007C00, V200R008C00,Secospace USG6600 V500R001C00SPC050 have a MaxAge LSA vulnerability due to improper OSPF implementation. When the device receives special LSA packets, the LS (Link Status) age would be set to MaxAge, 3600 seconds. An attacker can exploit this vulnerability to poison the route table and launch a DoS attack.

Publication Date Nov. 23, 2017, 4:29 a.m.
Registration Date Jan. 26, 2021, 1:29 p.m.
Last Update Nov. 21, 2024, 12:33 p.m.
CVSS3.0 : HIGH
スコア 7.5
Vector CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
攻撃元区分(AV) ネットワーク
攻撃条件の複雑さ(AC)
攻撃に必要な特権レベル(PR) 不要
利用者の関与(UI) 不要
影響の想定範囲(S) 変更なし
機密性への影響(C) なし
完全性への影響(I) なし
可用性への影響(A)
CVSS2.0 : MEDIUM
Score 5.0
Vector AV:N/AC:L/Au:N/C:N/I:N/A:P
攻撃元区分(AV) ネットワーク
攻撃条件の複雑さ(AC)
攻撃前の認証要否(Au) 不要
機密性への影響(C) なし
完全性への影響(I) なし
可用性への影響(A)
Get all privileges. いいえ
Get user privileges いいえ
Get other privileges いいえ
User operation required いいえ
Affected software configurations
Configuration1 or higher or less more than less than
cpe:2.3:o:huawei:ac6005_firmware:v200r006c10spc200:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:ac6005:-:*:*:*:*:*:*:*
Configuration2 or higher or less more than less than
cpe:2.3:o:huawei:ac6605_firmware:v200r006c10spc200:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:ac6605:-:*:*:*:*:*:*:*
Configuration3 or higher or less more than less than
cpe:2.3:o:huawei:ar1200_firmware:v200r005c10cp0582t:*:*:*:*:*:*:*
cpe:2.3:o:huawei:ar1200_firmware:v200r005c10hp0581t:*:*:*:*:*:*:*
cpe:2.3:o:huawei:ar1200_firmware:v200r005c20spc026t:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:ar1200:-:*:*:*:*:*:*:*
Configuration4 or higher or less more than less than
cpe:2.3:o:huawei:ar200_firmware:v200r005c20spc026t:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:ar200:-:*:*:*:*:*:*:*
Configuration5 or higher or less more than less than
cpe:2.3:o:huawei:ar3200_firmware:v200r005c20spc026t:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:ar3200:-:*:*:*:*:*:*:*
Configuration6 or higher or less more than less than
cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r005c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_12800_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r001c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:cloudengine_12800:-:*:*:*:*:*:*:*
Configuration7 or higher or less more than less than
cpe:2.3:o:huawei:cloudengine_5800_firmware:v100r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_5800_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_5800_firmware:v100r005c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_5800_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r001c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:cloudengine_5800:-:*:*:*:*:*:*:*
Configuration8 or higher or less more than less than
cpe:2.3:o:huawei:cloudengine_6800_firmware:v100r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_6800_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_6800_firmware:v100r005c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_6800_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r001c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:cloudengine_6800:-:*:*:*:*:*:*:*
Configuration9 or higher or less more than less than
cpe:2.3:o:huawei:cloudengine_7800_firmware:v100r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_7800_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_7800_firmware:v100r005c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_7800_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_7800_firmware:v200r001c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:cloudengine_7800:-:*:*:*:*:*:*:*
Configuration10 or higher or less more than less than
cpe:2.3:o:huawei:cloudengine_8800_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:cloudengine_8800_firmware:v200r001c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:cloudengine_8800:-:*:*:*:*:*:*:*
Configuration11 or higher or less more than less than
cpe:2.3:o:huawei:e600_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:e600:-:*:*:*:*:*:*:*
Configuration12 or higher or less more than less than
cpe:2.3:o:huawei:s12700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s12700_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s12700:-:*:*:*:*:*:*:*
Configuration13 or higher or less more than less than
cpe:2.3:o:huawei:s1700_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s1700_firmware:v100r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s1700_firmware:v200r006c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s1700:-:*:*:*:*:*:*:*
Configuration14 or higher or less more than less than
cpe:2.3:o:huawei:s2300_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v100r006c03:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v100r006c05:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r003c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r003c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r005c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r005c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r005c03:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2300_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s2300:-:*:*:*:*:*:*:*
Configuration15 or higher or less more than less than
cpe:2.3:o:huawei:s2700_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v100r006c03:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v100r006c05:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r003c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r003c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r005c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r005c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r005c03:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s2700_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s2700:-:*:*:*:*:*:*:*
Configuration16 or higher or less more than less than
cpe:2.3:o:huawei:s5300_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v100r006c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r001c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r003c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r003c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5300_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s5300:-:*:*:*:*:*:*:*
Configuration17 or higher or less more than less than
cpe:2.3:o:huawei:s5700_firmware:v100r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v100r006c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r001c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r003c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r003c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s5700_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s5700:-:*:*:*:*:*:*:*
Configuration18 or higher or less more than less than
cpe:2.3:o:huawei:s6300_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r001c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r003c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r003c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6300_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s6300:-:*:*:*:*:*:*:*
Configuration19 or higher or less more than less than
cpe:2.3:o:huawei:s6700_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r001c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r003c02:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r003c10:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s6700_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s6700:-:*:*:*:*:*:*:*
Configuration20 or higher or less more than less than
cpe:2.3:o:huawei:s7700_firmware:v100r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r001c01:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s7700_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s7700:-:*:*:*:*:*:*:*
Configuration21 or higher or less more than less than
cpe:2.3:o:huawei:s9300_firmware:v100r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v100r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v100r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v100r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r008c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9300_firmware:v200r008c10:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s9300:-:*:*:*:*:*:*:*
Configuration22 or higher or less more than less than
cpe:2.3:o:huawei:s9700_firmware:v200r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r002c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r003c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r005c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r006c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r007c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:s9700_firmware:v200r008c00:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:s9700:-:*:*:*:*:*:*:*
Configuration23 or higher or less more than less than
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c00:*:*:*:*:*:*:*
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c20:*:*:*:*:*:*:*
cpe:2.3:o:huawei:secospace_usg6600_firmware:v500r001c30:*:*:*:*:*:*:*
execution environment
1 cpe:2.3:h:huawei:secospace_usg6600:-:*:*:*:*:*:*:*
Related information, measures and tools
Common Vulnerabilities List
JVN Vulnerability Information
複数の Huawei 製品における入力確認に関する脆弱性
Title 複数の Huawei 製品における入力確認に関する脆弱性
Summary

複数の Huawei 製品には、入力確認に関する脆弱性が存在します。

Possible impacts サービス運用妨害 (DoS) 状態にされる可能性があります。
Solution

ベンダより正式な対策が公開されています。ベンダ情報を参照して適切な対策を実施してください。
Publication Date July 20, 2017, midnight
Registration Date Dec. 20, 2017, 5:53 p.m.
Last Update Dec. 20, 2017, 5:53 p.m.
Affected System
Huawei
AC6005 ファームウェア 
AC6605 ファームウェア 
AR1200 ファームウェア 
AR200 ファームウェア 
AR3200 ファームウェア 
CloudEngine 12800 ファームウェア 
CloudEngine 5800 ファームウェア 
CloudEngine 6800 ファームウェア 
CloudEngine 7800 ファームウェア 
CloudEngine 8800 ファームウェア 
E600 ファームウェア 
S12700 ファームウェア 
S1700 ファームウェア 
S2300 ファームウェア 
S2700 ファームウェア 
S5300 ファームウェア 
S5700 ファームウェア 
S6300 ファームウェア 
S6700 ファームウェア 
S7700 ファームウェア 
S9300 ファームウェア 
S9700 ファームウェア 
Secospace USG6600 ファームウェア 
CVE (情報セキュリティ 共通脆弱性識別子)
CWE (共通脆弱性タイプ一覧)
ベンダー情報
Change Log
No Changed Details Date of change
0 [2017年12月20日]
  掲載		 Feb. 17, 2018, 10:37 a.m.