CVE-2017-17303

Huawei DP300 V500R002C00; V500R002C00B010; V500R002C00B011; V500R002C00B012; V500R002C00B013; V500R002C00B014; V500R002C00B017; V500R002C00B018; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE30 V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE60 V100R001C10; V100R001C10B001; V100R001C10B002; V100R001C10B010; V100R001C10B011; V100R001C10B012; V100R001C10B013; V100R001C10B014; V100R001C10B016; V100R001C10B017; V100R001C10B018; V100R001C10B019; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800B011; V100R001C10SPC900; V500R002C00; V500R002C00B010; V500R002C00B011; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V500R002C00SPCe00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300 use the CIDAM protocol, which contains sensitive information in the message when it is implemented. So these products has an information disclosure vulnerability. An authenticated remote attacker could track and get the message of a target system. Successful exploit could allow the attacker to get the information and cause the sensitive information disclosure.

Published: Mar 9, 2018
Updated: Apr 13, 2023
CVE: CVE-2017-17303
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.9
AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:N/A:N

CVSS v2:

Severity: Low
Score: 4
AV:N/AC:L/Au:S/C:P/I:N/A:N

CWEs:

CWE-200

Affected Software
References

Software	From	Fixed in
huawei / dp300_firmware	500r002c00	500r002c00.x
huawei / dp300_firmware	500r002c00b010	500r002c00b010.x
huawei / dp300_firmware	500r002c00b011	500r002c00b011.x
huawei / dp300_firmware	500r002c00b012	500r002c00b012.x
huawei / dp300_firmware	500r002c00b013	500r002c00b013.x
huawei / dp300_firmware	500r002c00b014	500r002c00b014.x
huawei / dp300_firmware	500r002c00b017	500r002c00b017.x
huawei / dp300_firmware	500r002c00b018	500r002c00b018.x
huawei / dp300_firmware	500r002c00spc100	500r002c00spc100.x
huawei / dp300_firmware	500r002c00spc200	500r002c00spc200.x
huawei / dp300_firmware	500r002c00spc300	500r002c00spc300.x
huawei / dp300_firmware	500r002c00spc400	500r002c00spc400.x
huawei / dp300_firmware	500r002c00spc500	500r002c00spc500.x
huawei / dp300_firmware	500r002c00spc600	500r002c00spc600.x
huawei / dp300_firmware	500r002c00spc800	500r002c00spc800.x
huawei / dp300_firmware	500r002c00spc900	500r002c00spc900.x
huawei / dp300_firmware	500r002c00spca00	500r002c00spca00.x
huawei / rp200_firmware	500r002c00spc200	500r002c00spc200.x
huawei / rp200_firmware	600r006c00	600r006c00.x
huawei / rp200_firmware	600r006c00spc200	600r006c00spc200.x
huawei / rp200_firmware	600r006c00spc300	600r006c00spc300.x
huawei / te30_firmware	100r001c10spc300	100r001c10spc300.x
huawei / te30_firmware	100r001c10spc500	100r001c10spc500.x
huawei / te30_firmware	100r001c10spc600	100r001c10spc600.x
huawei / te30_firmware	100r001c10spc700b010	100r001c10spc700b010.x
huawei / te30_firmware	500r002c00spc200	500r002c00spc200.x
huawei / te30_firmware	500r002c00spc500	500r002c00spc500.x
huawei / te30_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te30_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te30_firmware	500r002c00spc900	500r002c00spc900.x
huawei / te30_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te30_firmware	600r006c00	600r006c00.x
huawei / te30_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te30_firmware	600r006c00spc300	600r006c00spc300.x
huawei / te40_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te40_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te40_firmware	500r002c00spc900	500r002c00spc900.x
huawei / te40_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te40_firmware	600r006c00	600r006c00.x
huawei / te40_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te40_firmware	600r006c00spc300	600r006c00spc300.x
huawei / te50_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te50_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te50_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te50_firmware	600r006c00	600r006c00.x
huawei / te50_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te50_firmware	600r006c00spc300	600r006c00spc300.x
huawei / te60_firmware	100r001c10	100r001c10.x
huawei / te60_firmware	100r001c10b001	100r001c10b001.x
huawei / te60_firmware	100r001c10b002	100r001c10b002.x
huawei / te60_firmware	100r001c10b010	100r001c10b010.x
huawei / te60_firmware	100r001c10b011	100r001c10b011.x
huawei / te60_firmware	100r001c10b012	100r001c10b012.x
huawei / te60_firmware	100r001c10b013	100r001c10b013.x
huawei / te60_firmware	100r001c10b014	100r001c10b014.x
huawei / te60_firmware	100r001c10b016	100r001c10b016.x
huawei / te60_firmware	100r001c10b017	100r001c10b017.x
huawei / te60_firmware	100r001c10b018	100r001c10b018.x
huawei / te60_firmware	100r001c10b019	100r001c10b019.x
huawei / te60_firmware	100r001c10spc400	100r001c10spc400.x
huawei / te60_firmware	100r001c10spc500	100r001c10spc500.x
huawei / te60_firmware	100r001c10spc600	100r001c10spc600.x
huawei / te60_firmware	100r001c10spc700	100r001c10spc700.x
huawei / te60_firmware	100r001c10spc800b011	100r001c10spc800b011.x
huawei / te60_firmware	100r001c10spc900	100r001c10spc900.x
huawei / te60_firmware	500r002c00	500r002c00.x
huawei / te60_firmware	500r002c00b010	500r002c00b010.x
huawei / te60_firmware	500r002c00b011	500r002c00b011.x
huawei / te60_firmware	500r002c00spc100	500r002c00spc100.x
huawei / te60_firmware	500r002c00spc200	500r002c00spc200.x
huawei / te60_firmware	500r002c00spc300	500r002c00spc300.x
huawei / te60_firmware	500r002c00spc600	500r002c00spc600.x
huawei / te60_firmware	500r002c00spc700	500r002c00spc700.x
huawei / te60_firmware	500r002c00spc800	500r002c00spc800.x
huawei / te60_firmware	500r002c00spc900	500r002c00spc900.x
huawei / te60_firmware	500r002c00spca00	500r002c00spca00.x
huawei / te60_firmware	500r002c00spcb00	500r002c00spcb00.x
huawei / te60_firmware	500r002c00spcd00	500r002c00spcd00.x
huawei / te60_firmware	500r002c00spce00	500r002c00spce00.x
huawei / te60_firmware	600r006c00	600r006c00.x
huawei / te60_firmware	600r006c00spc100	600r006c00spc100.x
huawei / te60_firmware	600r006c00spc200	600r006c00spc200.x
huawei / te60_firmware	600r006c00spc300	600r006c00spc300.x

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171220-01-cidam-en

Vulnerability Database

289,599

CVE-2017-17303