Page 2 of 7 results (0.002 seconds)

CVSS: 5.5EPSS: 0%CPEs: 2EXPL: 0

CVE-2017-17163

https://notcve.org/view.php?id=CVE-2017-17163

Huawei Secospace USG6600 V500R001C30SPC100 has an Out-of-Bounds memory access vulnerability due to insufficient verification. An authenticated local attacker can make processing crash by executing some commands. The attacker can exploit this vulnerability to cause a denial of service. Huawei Secospace USG6600 V500R001C30SPC100 tiene una vulnerabilidad de acceso a la memoria fuera de límites debido a una verificación insuficiente. Un atacante local autenticado puede provocar que el proceso se cierre inesperadamente mediante la ejecución de algunos comandos. • http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-01-firewall-en • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •

CVSS: 5.5EPSS: 0%CPEs: 8EXPL: 0

CVE-2017-17162

https://notcve.org/view.php?id=CVE-2017-17162

Huawei Secospace USG6600 V500R001C30SPC100, Secospace USG6600 V500R001C30SPC200, Secospace USG6600 V500R001C30SPC300, USG9500 V500R001C30SPC100, USG9500 V500R001C30SPC200, USG9500 V500R001C30SPC300 have a memory leak vulnerability due to memory don't be released when an local authenticated attacker execute special commands many times. An attacker could exploit it to cause memory leak, which may further lead to system exceptions. Huawei Secospace USG6600 V500R001C30SPC100, Secospace USG6600 V500R001C30SPC200, Secospace USG6600 V500R001C30SPC300, USG9500 V500R001C30SPC100, USG9500 V500R001C30SPC200, USG9500 V500R001C30SPC300 tienen una vulnerabilidad de fuga de memoria debido a que la memoria no se libera cuando un atacante local autenticado ejecuta comandos especiales muchas veces. Un atacante podría aprovecharse de esto para provocar una fuga de memoria, lo que podría conducir a excepciones del sistema. • http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171213-02-firewall-en • CWE-772: Missing Release of Resource after Effective Lifetime •