CVE-2017-15341
HIGHHuawei AR3200 V200R008C20/C30, TE40/50/60 V600R006C00 DoS via X.509 Certificate Decoding
Title source: llmDescription
Huawei AR3200 V200R008C20, V200R008C30, TE40 V600R006C00, TE50 V600R006C00, TE60 V600R006C00 have a denial of service vulnerability. The software decodes X.509 certificate in an improper way. A remote unauthenticated attacker could send a crafted X.509 certificate to the device. Successful exploit could result in a denial of service on the device.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-cert-en
Scores
CVSS v3
7.5
EPSS
0.0015
EPSS Percentile
34.5%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-295
Status
published
Products (5)
huawei/ar3200_firmware
v200r008c20
huawei/ar3200_firmware
v200r008c30
huawei/te40_firmware
v600r006c00
huawei/te50_firmware
v600r006c00
huawei/te60_firmware
v600r006c00
Published
Feb 15, 2018
Tracked Since
Feb 18, 2026