CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
42.8%
There is an out of bounds write vulnerability in some Huawei products. The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition.Affected product versions include:IPS Module V500R005C00,V500R005C20;NGFW Module V500R005C00;NIP6600 V500R005C00,V500R005C20;S12700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600,V200R013C00SPC500,V200R019C00SPC200,V200R019C00SPC500,V200R019C10SPC200,V200R020C00,V200R020C10;S1700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;S2700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;S5700 V200R010C00SPC600,V200R010C00SPC700,V200R011C10SPC500,V200R011C10SPC600,V200R019C00SPC500;S6700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;S7700 V200R010C00SPC600,V200R010C00SPC700,V200R011C10SPC500,V200R011C10SPC600;S9700 V200R010C00SPC600,V200R011C10SPC500,V200R011C10SPC600;USG9500 V500R005C00,V500R005C20.
Vendor | Product | Version | CPE |
---|---|---|---|
huawei | ips_module_firmware | v500r005c00 | cpe:2.3:o:huawei:ips_module_firmware:v500r005c00:*:*:*:*:*:*:* |
huawei | ips_module_firmware | v500r005c20 | cpe:2.3:o:huawei:ips_module_firmware:v500r005c20:*:*:*:*:*:*:* |
huawei | ips_module | - | cpe:2.3:h:huawei:ips_module:-:*:*:*:*:*:*:* |
huawei | ngfw_module_firmware | v500r005c00 | cpe:2.3:o:huawei:ngfw_module_firmware:v500r005c00:*:*:*:*:*:*:* |
huawei | ngfw_module | - | cpe:2.3:h:huawei:ngfw_module:-:*:*:*:*:*:*:* |
huawei | nip6600_firmware | v500r005c00 | cpe:2.3:o:huawei:nip6600_firmware:v500r005c00:*:*:*:*:*:*:* |
huawei | nip6600_firmware | v500r005c20 | cpe:2.3:o:huawei:nip6600_firmware:v500r005c20:*:*:*:*:*:*:* |
huawei | nip6600 | - | cpe:2.3:h:huawei:nip6600:-:*:*:*:*:*:*:* |
huawei | s12700_firmware | v200r010c00spc600 | cpe:2.3:o:huawei:s12700_firmware:v200r010c00spc600:*:*:*:*:*:*:* |
huawei | s12700_firmware | v200r011c10spc500 | cpe:2.3:o:huawei:s12700_firmware:v200r011c10spc500:*:*:*:*:*:*:* |
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:N/I:N/A:P
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
EPSS
Percentile
42.8%