CVE-2017-2700

Published: Nov 22, 2017Modified: May 13, 2026

7.5

Vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Exploitability: 3.9 / Impact: 3.6

Source: NVD

Description

AC6005 with software V200R006C10, AC6605 with software V200R006C10 have a DoS Vulnerability. An attacker can send malformed packets to the device, which causes the device memory leaks, leading to DoS attacks.

Affected (2)

Products: Huawei: Ac6005 Firmware, Ac6605 Firmware

Huawei

2 products

Ac6005 Firmware

Ac6605 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Ac6005 Firmware	Version v200r006c10

Running on/with	Platform Versions
Huawei Ac6005	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Huawei Ac6605 Firmware	Version v200r006c10

Running on/with	Platform Versions
Huawei Ac6605	All versions

Related CWEs

CWE-772

Missing Release of Resource after Effective Lifetime

The product does not release a resource after its effective lifetime has ended, i.e., after the resource is no longer needed.

References (4)

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170517-01-ac-en

Source: psirt@huawei.com

Vendor Advisory

http://www.securityfocus.com/bid/102166

Source: psirt@huawei.com

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170517-01-ac-en

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securityfocus.com/bid/102166

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.