Sign-up

ID

VAR-201801-1841


TITLE

Huawei S7700 and S9700 Denial of Service Vulnerabilities

Trust: 0.6

sources: CNVD: CNVD-2018-00339

DESCRIPTION

The Huawei S7700 and S9700 are Huawei's intelligent routing switches. The HuaweiS7700 and S9700 denial of service vulnerability were caused by the device failing to fully verify the packet. An unauthenticated remote attacker can exploit the vulnerability by sending a very large message to the affected device.

Trust: 0.6

sources: CNVD: CNVD-2018-00339

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2018-00339

AFFECTED PRODUCTS

vendor:huaweimodel:s7700 v200r001c00scope: - version: -

Trust: 0.6

vendor:huaweimodel:s7700 v200r002c00scope: - version: -

Trust: 0.6

vendor:huaweimodel:s9700 v200r001c00scope: - version: -

Trust: 0.6

vendor:huaweimodel:s7700 v100r006c00scope: - version: -

Trust: 0.6

sources: CNVD: CNVD-2018-00339

CVSS

SEVERITY

CVSSV2

CVSSV3

CNVD: CNVD-2018-00339
value: HIGH

Trust: 0.6

CNVD: CNVD-2018-00339
severity: HIGH
baseScore: 7.8
vectorString: AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector: NETWORK
accessComplexity: LOW
authentication: NONE
confidentialityImpact: NONE
integrityImpact: NONE
availabilityImpact: COMPLETE
exploitabilityScore: 10.0
impactScore: 6.9
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

sources: CNVD: CNVD-2018-00339

PATCH

title:HuaweiS7700 and S9700 denial of service vulnerability patchesurl:https://www.cnvd.org.cn/patchinfo/show/112711

Trust: 0.6

sources: CNVD: CNVD-2018-00339

EXTERNAL IDS

db:CNVDid:CNVD-2018-00339

Trust: 0.6

sources: CNVD: CNVD-2018-00339

REFERENCES

url:http://www.huawei.com/cn/psirt/security-advisories/2017/huawei-sa-20180103-01-switch-cn

Trust: 0.6

sources: CNVD: CNVD-2018-00339

SOURCES

db:CNVDid:CNVD-2018-00339

LAST UPDATE DATE

2022-05-04T09:11:02.538000+00:00


SOURCES UPDATE DATE

db:CNVDid:CNVD-2018-00339date:2018-01-05T00:00:00

SOURCES RELEASE DATE

db:CNVDid:CNVD-2018-00339date:2018-01-05T00:00:00