CVE-2017-17305

Published: Aug 21, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Some Huawei Firewall products USG2205BSR V300R001C10SPC600; USG2220BSR V300R001C00; USG5120BSR V300R001C00; USG5150BSR V300R001C00 have a Bleichenbacher Oracle vulnerability in the IPSEC IKEv1 implementations. Remote attackers can decrypt IPSEC tunnel ciphertext data by leveraging a Bleichenbacher RSA padding oracle. Cause a Bleichenbacher oracle attack. Successful exploit this vulnerability can impact IPSec tunnel security.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	USG2205BSR; USG2220BSR; USG5120BSR; USG5150BSR	affected `USG2205BSR V300R001C10SPC600` affected `USG2220BSR V300R001C00` affected `USG5120BSR V300R001C00` affected `USG5150BSR V300R001C00`

References

https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180813-01-Bleichenbacher-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2017-17305

Description

Affected Products

References