cvedb.io
CVE-2017-17223
HIGH · CVSS 8.8
EPSS exploitation probability: 0%
Published 2018-03-09T17:29:01.347 · Last modified 2026-06-17T01:10:32.950

Summary

Huawei eSpace 7910 V200R003C30; eSpace 7950 V200R003C30; eSpace 8950 V200R003C00; V200R003C30 have a directory traversal vulnerability. An authenticated, remote attacker can craft specific URL to the affected products. Due to insufficient verification of the URL, successful exploit will upload and download files and cause information leak and system crash.

Affected products

huawei — espace_7910_firmware

Does this affect you?

Add your gear to cvedb and we'll alert you only when huawei ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.