CVE-2017-8213
Description
Huawei SMC2.0 with software of V100R003C10, V100R005C00SPC100, V100R005C00SPC101B001T, V100R005C00SPC102, V100R005C00SPC103, V100R005C00SPC200, V100R005C00SPC201T, V500R002C00, V600R006C00 has an input validation vulnerability when handle TLS and DTLS handshake with certificate. Due to the insufficient validation of received PKI certificates, remote attackers could exploit this vulnerability to crash the TLS module.
Risk Information
Base Score
5.3
MODERATE
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L
EPSS Score
Exploitation Probability
0.171
Associated Vulnerability
| Vulnerability | OS Platform |
|---|---|
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v600r006c00 | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v500r002c00 | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r005c00spc201t | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r005c00spc200 | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r005c00spc103 | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r005c00spc102 | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r005c00spc101b001t | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r005c00spc100 | NCM |
| Vulnerabilities CVE-2017-8213 are affected in smc2.0_firmware v100r003c10 | NCM |
| Improper Certificate Validation Vulnerability (CVE-2017-8213) | NCM |
Patch Details
No records foundReferences
https://nvd.nist.gov/vuln/detail/CVE-2023-1234
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2023-1234