CVE-2017-15324

CVE-2017-15324

EPSS 1.3%

Huawei S5700 and S6700 with software of V200R005C00 have a DoS vulnerability due to insufficient validation of the Network Quality Analysis (NQA) packets. A remote attacker could exploit this vulnerability by sending malformed NQA packets to the target device. Successful exploitation could make the device restart.

Affected products

Huawei Technologies Co., Ltd. · S12700 Huawei Technologies Co., Ltd. · S1700 Huawei Technologies Co., Ltd. · S2700 Huawei Technologies Co., Ltd. · S5700 Huawei Technologies Co., Ltd. · S6700 Huawei Technologies Co., Ltd. · S7700 Huawei Technologies Co., Ltd. · S9700

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-01-nqa-en