First published: Fri Mar 09 2018(Updated: )
Patch module of Huawei NIP6300 V500R001C20SPC100, V500R001C20SPC200, NIP6600 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6300 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6500 V500R001C20SPC100, V500R001C20SPC200 has a memory leak vulnerability. An authenticated attacker could execute special commands many times, the memory leaking happened, which would cause the device to reset finally.
Credit: psirt@huawei.com
Affected Software | Affected Version | How to fix |
---|---|---|
Huawei Nip6300 Firmware | =v500r001c20spc100 | |
Huawei Nip6300 Firmware | =v500r001c20spc200 | |
Huawei NIP6300 | ||
Huawei Nip6600 Firmware | =v500r001c20spc100 | |
Huawei Nip6600 Firmware | =v500r001c20spc200 | |
Huawei Nip6600 | ||
Huawei Secospace Usg6300 Firmware | =v500r001c20spc100 | |
Huawei Secospace Usg6300 Firmware | =v500r001c20spc200 | |
Huawei Secospace USG6300 | ||
Huawei Secospace Usg6500 Firmware | =v500r001c20spc100 | |
Huawei Secospace Usg6500 Firmware | =v500r001c20spc200 | |
Huawei Secospace Usg6500 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
This vulnerability has the ID CVE-2017-15315.
The title of this vulnerability is 'Patch module of Huawei NIP6300 V500R001C20SPC100 V500R001C20SPC200 NIP6600 V500R001C20SPC100 V500R001C20SPC200'.
CVE-2017-15315 has a severity rating of medium (6.5).
The vulnerability affects the following software versions: Huawei NIP6300 V500R001C20SPC100, V500R001C20SPC200, NIP6600 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6300 V500R001C20SPC100, V500R001C20SPC200, Secospace USG6500 V500R001C20SPC100, V500R001C20SPC200.
You can find more information about this vulnerability at the following link: [http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-command-en](http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-command-en).