CVE-2017-17162 Information

Description

Huawei Secospace USG6600 V500R001C30SPC100 Secospace USG6600 V500R001C30SPC200 Secospace USG6600 V500R001C30SPC300 USG9500 V500R001C30SPC100 USG9500 V500R001C30SPC200 USG9500 V500R001C30SPC300 have a memory leak vulnerability due to memory don’t be released when an local authenticated attacker execute special commands many times. An attacker could exploit it to cause memory leak which may further lead to system exceptions.

CVSS Vector

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Reference

http://www.huawei.com/en/psirt/security-advisories/2017/huawei-sa-20171213-02-firewall-en

Attack Complexity

LOW

Privileges Required

LOW

User Interaction Required

LOW

Scope

NONE

Confidentiality Impact

UNCHANGED

Integrity Impact

NONE

Availability Impact

NONE

Base Score

HIGH

Base Severity

5.5