Vulnerability Details CVE-2017-15327
S12700 V200R005C00, V200R006C00, V200R006C01, V200R007C00, V200R007C01, V200R007C20, V200R008C00, V200R008C06, V200R009C00, V200R010C00, S7700 V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R006C01, V200R007C00, V200R007C01, V200R008C00, V200R008C06, V200R009C00, V200R010C00, S9700 V200R001C00, V200R001C01, V200R002C00, V200R003C00, V200R005C00, V200R006C00, V200R006C01, V200R007C00, V200R007C01, V200R008C00, V200R009C00, V200R010C00 have an improper authorization vulnerability on Huawei switch products. The system incorrectly performs an authorization check when a normal user attempts to access certain information which is supposed to be accessed only by authenticated user. Successful exploit could cause information disclosure.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 29.5%
CVSS Severity
CVSS v3 Score 4.3
CVSS v2 Score 4.0
References
Products affected by CVE-2017-15327
-
cpe:2.3:h:huawei:s12700:-
-
cpe:2.3:h:huawei:s7700:-
-
cpe:2.3:h:huawei:s9700:-
-
cpe:2.3:o:huawei:s12700_firmware:v200r005c00
-
cpe:2.3:o:huawei:s12700_firmware:v200r006c00
-
cpe:2.3:o:huawei:s12700_firmware:v200r006c01
-
cpe:2.3:o:huawei:s12700_firmware:v200r007c00
-
cpe:2.3:o:huawei:s12700_firmware:v200r007c01
-
cpe:2.3:o:huawei:s12700_firmware:v200r007c20
-
cpe:2.3:o:huawei:s12700_firmware:v200r008c00
-
cpe:2.3:o:huawei:s12700_firmware:v200r008c06
-
cpe:2.3:o:huawei:s12700_firmware:v200r009c00
-
cpe:2.3:o:huawei:s12700_firmware:v200r010c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r001c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r001c01
-
cpe:2.3:o:huawei:s7700_firmware:v200r002c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r003c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r005c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r006c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r006c01
-
cpe:2.3:o:huawei:s7700_firmware:v200r007c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r007c01
-
cpe:2.3:o:huawei:s7700_firmware:v200r008c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r008c06
-
cpe:2.3:o:huawei:s7700_firmware:v200r009c00
-
cpe:2.3:o:huawei:s7700_firmware:v200r010c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r001c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r001c01
-
cpe:2.3:o:huawei:s9700_firmware:v200r002c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r003c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r005c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r006c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r006c01
-
cpe:2.3:o:huawei:s9700_firmware:v200r007c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r007c01
-
cpe:2.3:o:huawei:s9700_firmware:v200r008c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r009c00
-
cpe:2.3:o:huawei:s9700_firmware:v200r010c00