Vulnerability Details CVE-2017-5544
An issue was discovered on FiberHome Fengine S5800 switches V210R240. An unauthorized attacker can access the device's SSH service, using a password cracking tool to establish SSH connections quickly. This will trigger an increase in the SSH login timeout (each of the login attempts will occupy a connection slot for a longer time). Once this occurs, legitimate login attempts via SSH/telnet will be refused, resulting in a denial of service; you must restart the device.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.0
EPSS Ranking 6.9%
CVSS Severity
CVSS v3 Score 5.9
CVSS v2 Score 7.1
References
Products affected by CVE-2017-5544
-
cpe:2.3:h:fiberhome:fengine_28f-s:-
-
cpe:2.3:h:fiberhome:fengine_52f-s:-
-
cpe:2.3:h:fiberhome:fengine_52t-s:-
-
cpe:2.3:h:fiberhome:fengine_s5800-28t-s-pe:-
-
cpe:2.3:h:fiberhome:fengine_s5800-28t-s:-
-
cpe:2.3:o:fiberhome:fengine_s5800_firmware:v210r240