Attacker Value
Unknown
(0 users assessed)
Exploitability
Unknown
(0 users assessed)
User Interaction
Unknown
Privileges Required
Unknown
Attack Vector
Unknown
0

CVE-2017-17303

Disclosure Date: March 09, 2018
CVE-2017-17303
Add MITRE ATT&CK tactics and techniques that apply to this CVE.

Description

Huawei DP300 V500R002C00; V500R002C00B010; V500R002C00B011; V500R002C00B012; V500R002C00B013; V500R002C00B014; V500R002C00B017; V500R002C00B018; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC400; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; RP200 V500R002C00SPC200; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE30 V100R001C10SPC300; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700B010; V500R002C00SPC200; V500R002C00SPC500; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE40 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC900; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE50 V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPCb00; V600R006C00; V600R006C00SPC200; V600R006C00SPC300; TE60 V100R001C10; V100R001C10B001; V100R001C10B002; V100R001C10B010; V100R001C10B011; V100R001C10B012; V100R001C10B013; V100R001C10B014; V100R001C10B016; V100R001C10B017; V100R001C10B018; V100R001C10B019; V100R001C10SPC400; V100R001C10SPC500; V100R001C10SPC600; V100R001C10SPC700; V100R001C10SPC800B011; V100R001C10SPC900; V500R002C00; V500R002C00B010; V500R002C00B011; V500R002C00SPC100; V500R002C00SPC200; V500R002C00SPC300; V500R002C00SPC600; V500R002C00SPC700; V500R002C00SPC800; V500R002C00SPC900; V500R002C00SPCa00; V500R002C00SPCb00; V500R002C00SPCd00; V500R002C00SPCe00; V600R006C00; V600R006C00SPC100; V600R006C00SPC200; V600R006C00SPC300 use the CIDAM protocol, which contains sensitive information in the message when it is implemented. So these products has an information disclosure vulnerability. An authenticated remote attacker could track and get the message of a target system. Successful exploit could allow the attacker to get the information and cause the sensitive information disclosure.

Add Assessment

No one has assessed this topic. Be the first to add your voice to the community.

CVSS V3 Severity and Metrics
Base Score:
None
Impact Score:
Unknown
Exploitability Score:
Unknown
Vector:
Unknown
Attack Vector (AV):
Unknown
Attack Complexity (AC):
Unknown
Privileges Required (PR):
Unknown
User Interaction (UI):
Unknown
Scope (S):
Unknown
Confidentiality (C):
Unknown
Integrity (I):
Unknown
Availability (A):
Unknown

General Information

Offensive Application
Unknown
Utility Class
Unknown
Ports
Unknown
OS
Unknown
Vulnerable Versions
DP300; RP200; TE30; TE40; TE50; TE60 DP300 V500R002C00
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B010
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B011
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B012
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B013
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B014
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B017
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B018
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC100
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC300
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC400
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC500
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC800
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC900
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCa00
DP300; RP200; TE30; TE40; TE50; TE60 RP200 V500R002C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC300
DP300; RP200; TE30; TE40; TE50; TE60 TE30 V100R001C10SPC300
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC500
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC700B010
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC500
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC700
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC900
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCb00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC300
DP300; RP200; TE30; TE40; TE50; TE60 TE40 V500R002C00SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC700
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC900
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCb00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC300
DP300; RP200; TE30; TE40; TE50; TE60 TE50 V500R002C00SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC700
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCb00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC300
DP300; RP200; TE30; TE40; TE50; TE60 TE60 V100R001C10
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B001
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B002
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B010
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B011
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B012
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B013
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B014
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B016
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B017
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B018
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10B019
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC400
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC500
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC700
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC800B011
DP300; RP200; TE30; TE40; TE50; TE60 V100R001C10SPC900
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B010
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00B011
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC100
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC300
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC600
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC700
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC800
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPC900
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCa00
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCb00
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCd00
DP300; RP200; TE30; TE40; TE50; TE60 V500R002C00SPCe00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC100
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC200
DP300; RP200; TE30; TE40; TE50; TE60 V600R006C00SPC300
Prerequisites
Unknown
Discovered By
Unknown
PoC Author
Unknown
Metasploit Module
Unknown
Reporter
Unknown

Vendors

Products

Additional Info

Authenticated
Unknown
Exploitable
Unknown
Reliability
Unknown
Stability
Unknown
Available Mitigations
Unknown
Shelf Life
Unknown
Userbase/Installbase
Unknown
Patch Effectiveness
Unknown
Technical Analysis