What is CVE-2017-8147?

CVE-2017-8147 is a high-severity vulnerability in Huawei Ac6005, classified under Improper Input Validation. CVSS score: 7.5/10. Published 2017-11-22.

How severe is CVE-2017-8147?

High severity. CVSS v3 base score is 7.5 out of 10.

Improper input validation in Huawei Ac6005

CVE-2017-8147

AC6005 V200R006C10SPC200,AC6605 V200R006C10SPC200,AR1200 with software V200R005C10CP0582T, V200R005C10HP0581T, V200R005C20SPC026T,AR200 with software V200R005C20SPC026T,AR3200 V200R005C20SPC026T,CloudEngine 12800 with software V100R003C00…

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.002 (36.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H.

Affected products

Huawei Ac6005
Huawei Ac6005_firmware — versions v200r006c10spc200
Huawei Ac6605
Huawei Ac6605_firmware — versions v200r006c10spc200
Huawei Ar1200
Huawei Ar1200_firmware — versions v200r005c10cp0582t, v200r005c10hp0581t, v200r005c20spc026t
Huawei Ar200
Huawei Ar200_firmware — versions v200r005c20spc026t
Huawei Ar3200
Huawei Ar3200_firmware — versions v200r005c20spc026t

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

psirt@huawei.com (x_refsource_CONFIRM, Mitigation, Issue Tracking, Vendor Advisory)

Frequently asked questions

What is CVE-2017-8147?: CVE-2017-8147 is a high-severity vulnerability in Huawei Ac6005, classified under Improper Input Validation. CVSS score: 7.5/10. Published 2017-11-22.
How severe is CVE-2017-8147?: High severity. CVSS v3 base score is 7.5 out of 10.