VYPR
← All advisories
Unrated severityNVD Advisory· Published Jul 2, 2018· Updated Aug 5, 2024

CVE-2017-17316

CVE-2017-17316

Description

Huawei DP300 V500R002C00; RP200 V500R002C00; V600R006C00; TE30 V100R001C10; V500R002C00; V600R006C00; TE40 V500R002C00; V600R006C00; TE50 V500R002C00; V600R006C00; TE60 V100R001C10; V500R002C00; V600R006C00 have an out-of-bounds read vulnerability. An unauthenticated, remote attacker has to control the peer device and craft the Signalling Connection Control Part (SCCP) messages to the target devices. Due to insufficient input validation of some values in the messages, successful exploit will cause out-of-bounds read and some services abnormal.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Huawei DP300, RP200, TE30/40/50/60 have an out-of-bounds read via crafted SCCP messages leading to service abnormal.

Vulnerability

An out-of-bounds read vulnerability exists in Huawei DP300 V500R002C00, RP200 V500R002C00 and V600R006C00, TE30 V100R001C10/V500R002C00/V600R006C00, TE40 V500R002C00/V600R006C00, TE50 V500R002C00/V600R006C00, TE60 V100R001C10/V500R002C00/V600R006C00. The vulnerability is due to insufficient input validation of certain values in Signalling Connection Control Part (SCCP) messages [1].

Exploitation

An unauthenticated, remote attacker must control a peer device and craft malicious SCCP messages to the target. No authentication or user interaction is required beyond the attacker's control of the peer device [1].

Impact

Successful exploitation causes an out-of-bounds read, potentially leading to abnormal services on the affected device [1].

Mitigation

Huawei has released software updates: DP300 V500R002C00SPCb00, RP200 upgrade to TEX0[1] V600R006C00SPC500, and TE series upgrade to V600R006C00SPC500 [1]. Users should apply the fixes.

References
  1. Security Advisory - Out-of-bounds Read Vulnerability in Some Huawei Products

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

4
  • Huawei/Te30llm-fuzzy
    Range: V100R001C10 or V500R002C00 or V600R006C00
  • Huawei/DP300llm-fuzzy
    Range: V500R002C00
  • Huawei/RP200llm-fuzzy
    Range: V500R002C00 or V600R006C00
  • Huawei Technologies Co., Ltd./DP300; RP200; TE30; TE40; TE50; TE60v5
    Range: DP300 V500R002C00

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

1

News mentions

0

No linked articles in our index yet.