CVE-2017-17167
MEDIUMHuawei DP300 V500R002C00; TP3206 V100R002C00; ViewPoint 9030 V100R011C02/C03 - Broken Cryptographic Algorithm in SSL
Title source: llmDescription
Huawei DP300 V500R002C00; TP3206 V100R002C00; ViewPoint 9030 V100R011C02; V100R011C03 have a use of a broken or risky cryptographic algorithm vulnerability. The software uses risky cryptographic algorithm in SSL. This is dangerous because a remote unauthenticated attacker could use well-known techniques to break the algorithm. Successful exploit could result in the exposure of sensitive information.
References (2)
Core 2
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171215-01-ssl-en
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/103513
Scores
CVSS v3
5.9
EPSS
0.0007
EPSS Percentile
21.0%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-327
Status
published
Products (4)
huawei/dp300_firmware
v500r002c00
huawei/tp3206_firmware
v100r002c00
huawei/viewpoint_9030_firmware
v100r011c02
huawei/viewpoint_9030_firmware
v100r011c03
Published
Mar 09, 2018
Tracked Since
Feb 18, 2026