Description
Huawei AR100, AR100-S, AR110-S, AR120, AR120-S, AR1200, AR1200-S, AR150, AR150-S, AR160, AR200, AR200-S, AR2200, AR2200-S, AR3200, AR510, DP300, NetEngine16EX, RP200, SRG1300, SRG2300, SRG3300, TE30, TE40, TE50, TE60, TP3106, TP3206, ViewPoint 8660, and ViewPoint 9030 have an insufficient validation vulnerability. Since packet validation is insufficient, an unauthenticated attacker may send special H323 packets to exploit the vulnerability. Successful exploit could allow the attacker to send malicious packets and result in DOS attacks.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-h323-en
Scores
CVSS v3
5.9
EPSS
0.0013
EPSS Percentile
31.9%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-20
Status
published
Products (50)
huawei/ar100-s_firmware
v200r007c00spca00
huawei/ar100-s_firmware
v200r007c00spcb00
huawei/ar100-s_firmware
v200r008c20
huawei/ar100-s_firmware
v200r008c20spc700
huawei/ar100-s_firmware
v200r008c20spc800
huawei/ar100-s_firmware
v200r008c20spc800pwe
huawei/ar100-s_firmware
v200r008c30
huawei/ar100_firmware
v200r008c20spc700
huawei/ar100_firmware
v200r008c20spc700pwe
huawei/ar100_firmware
v200r008c20spc800
... and 40 more
Published
Feb 15, 2018
Tracked Since
Feb 18, 2026