← back
CVE-2017-8199

CVE-2017-8199

EPSS 1.1%
Vexday Risk Score
3Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS EPSS 1.1%KEV nãoPoC Nuclei Metasploit Patch
Lifecycle
22 Nov 2017Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
MAX PRESENCE V100R001C00, TP3106 V100R002C00, TP3206 V100R002C00 have an out-of-bounds read vulnerability in H323 protocol. An attacker logs in to the system as a user and send crafted packets to the affected products. Due to insufficient verification of the packets, successful exploit will cause process reboot.
Affected products
Huawei Technologies Co., Ltd. · MAX PRESENCE,TP3106,TP3206,

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20170927-01-h323-enhttp://www.securityfocus.com/bid/101951