CVE-2014-4706

HIGH

Huawei Campus S3700HI V200R001C00SPC300 and others - Denial of Service via Heap Overflow

Title source: llm
STIX 2.1

Description

Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow.

References (1)

Core 1
Core References

Scores

CVSS v3 7.5
EPSS 0.0017
EPSS Percentile 38.3%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Details

CWE
CWE-119
Status published
Products (28)
huawei/campus_s3700hi_firmware v200r001c00spc300
huawei/campus_s5700_firmware v200r002c00spc100
huawei/campus_s7700_firmware v200r003c00spc300
huawei/campus_s7700_firmware v200r003c00spc500
huawei/lsw_s9700_firmware v200r001c00spc300
huawei/lsw_s9700_firmware v200r003c00spc300
huawei/lsw_s9700_firmware v200r003c00spc500
huawei/s2350_firmware v200r003c00spc300
huawei/s2750_firmware v200r003c00spc300
huawei/s3300hi_firmware v200r001c00spc300
... and 18 more
Published Apr 02, 2017
Tracked Since Feb 18, 2026