CVE-2014-4706

Published: Apr 2, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

Huawei Campus S3700HI with software V200R001C00SPC300; Campus S5700 with software V200R002C00SPC100; Campus S7700 with software V200R003C00SPC300,V200R003C00SPC500; LSW S9700 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S2350 with software V200R003C00SPC300; S2750 with software V200R003C00SPC300; S5300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S5700 with software V200R001C00SPC300,V200R003C00SPC300; S6300 with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S6700 S3300HI with software V200R001C00SPC300,V200R002C00SPC100,V200R003C00SPC300; S7700 with software V200R001C00SPC300; S9300 with software V200R001C00SPC300,V200R003C00SPC300,V200R003C00SPC500; S9300E with software V200R003C00SPC300,V200R003C00SPC500 allow attackers to keep sending malformed packets to cause a denial of service (DoS) attack, aka a heap overflow.

Affected (27)

Products: Huawei: Campus S3700hi Firmware, S5700 Firmware, S6700 Firmware, S3300hi Firmware, S5300 Firmware, S6300 Firmware, S9300 Firmware, S7700 Firmware, Lsw S9700 Firmware, Campus S5700 Firmware, Campus S7700 Firmware, S9300e Firmware, S2350 Firmware, S2750 Firmware

Huawei

14 products

Campus S3700hi Firmware

Campus S5700 Firmware

Campus S7700 Firmware

S9300e Firmware

S2350 Firmware

S2750 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Campus S3700hi Firmware	Version v200r001c00spc300

Running on/with	Platform Versions
Huawei Campus S3700hi	All versions

Configuration B

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S5700 Firmware	Version v200r001c00spc300

Configuration C

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S6700 Firmware	Version v200r001c00spc300

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S3300hi Firmware	Version v200r001c00spc300

Running on/with	Platform Versions
Huawei S3300hi	All versions

Configuration E

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S5300 Firmware	Version v200r001c00spc300

Configuration F

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S6300 Firmware	Version v200r001c00spc300

Configuration G

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S9300 Firmware	Version v200r001c00spc300

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S7700 Firmware	Version v200r001c00spc300

Running on/with	Platform Versions
Huawei S7700	All versions

Configuration I

1 vulnerable

Vulnerable Software	Affected Versions
Huawei Lsw S9700 Firmware	Version v200r001c00spc300

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Campus S5700 Firmware	Version v200r002c00spc100

Running on/with	Platform Versions
Huawei Campus S5700	All versions

Configuration K

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S6700 Firmware	Version v200r002c00spc100

Configuration L

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S5300 Firmware	Version v200r002c00spc100

Configuration M

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S6300 Firmware	Version v200r002c00spc100

Configuration N

1 vulnerable

Vulnerable Software	Affected Versions
Huawei Campus S7700 Firmware	Version v200r003c00spc300

Configuration O

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S9300 Firmware	Version v200r003c00spc300

Configuration P

1 vulnerable

Vulnerable Software	Affected Versions
Huawei S9300e Firmware	Version v200r003c00spc300

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S5300 Firmware	Version v200r003c00spc300

Running on/with	Platform Versions
Huawei S5300	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S5700 Firmware	Version v200r003c00spc300

Running on/with	Platform Versions
Huawei S5700	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S6300 Firmware	Version v200r003c00spc300

Running on/with	Platform Versions
Huawei S6300	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S6700 Firmware	Version v200r003c00spc300

Running on/with	Platform Versions
Huawei S6700	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S2350 Firmware	Version v200r003c00spc300

Running on/with	Platform Versions
Huawei S2350	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S2750 Firmware	Version v200r003c00spc300

Running on/with	Platform Versions
Huawei S2750	All versions

Configuration W

1 vulnerable

Vulnerable Software	Affected Versions
Huawei Lsw S9700 Firmware	Version v200r003c00spc300

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Campus S7700 Firmware	Version v200r003c00spc500

Running on/with	Platform Versions
Huawei Campus S7700	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S9300 Firmware	Version v200r003c00spc500

Running on/with	Platform Versions
Huawei S9300	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei S9300e Firmware	Version v200r003c00spc500

Running on/with	Platform Versions
Huawei S9300e	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Lsw S9700 Firmware	Version v200r003c00spc500

Running on/with	Platform Versions
Huawei Lsw S9700	All versions

Related CWEs

CWE-119

Improper Restriction of Operations within the Bounds of a Memory Buffer

The product performs operations on a memory buffer, but it reads from or writes to a memory location outside the buffer's intended boundary. This may result in read or write operations on unexpected memory locations that could be linked to other variables, data structures, or internal program data.

References (2)

http://www.huawei.com/en/psirt/security-advisories/hw-343218

Source: psirt@huawei.com

Vendor Advisory

http://www.huawei.com/en/psirt/security-advisories/hw-343218

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.