Memory Leak Vulnerability in Huawei Firewall Products
CVE-2020-1815
7.5HIGH
Key Information:
- Vendor
- Huawei
- Vendor
- CVE Published:
- 18 February 2020
Summary
A memory leak vulnerability exists in specific versions of Huawei's NIP6800 and Secospace firewall products. The affected software fails to manage allocated memory properly when processing certain messages. This inadequacy allows an attacker to continuously send messages, potentially leading to memory exhaustion. If successfully exploited, this vulnerability could disrupt operations and lead to degraded performance of the affected systems.
Affected Version(s)
NIP6800 V500R001C30
NIP6800 V500R001C60SPC500
NIP6800 V500R005C00
References
CVSS V3.1
Score:
7.5
Severity:
HIGH
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged
Timeline
Vulnerability published
Vulnerability Reserved