CVE-2018-7994

Published: Jul 31, 2018

Modified: Aug 5, 2024

PUBLISHED

Description

Some Huawei products IPS Module V500R001C50; NGFW Module V500R001C50; V500R002C10; NIP6300 V500R001C50; NIP6600 V500R001C50; NIP6800 V500R001C50; Secospace USG6600 V500R001C50; USG9500 V500R001C50 have a memory leak vulnerability. The software does not release allocated memory properly when processing Protal questionnaire. A remote attacker could send a lot questionnaires to the device, successful exploit could cause the device to reboot since running out of memory.

Vendor	Product	Versions
Huawei Technologies Co., Ltd.	NGFW Module; NIP6300; NIP6600; NIP6800; Secospace USG6600; USG9500	affected `IPS Module V500R001C50` affected `NGFW Module V500R001C50` affected `V500R002C10` affected `NIP6300 V500R001C50` affected `NIP6600 V500R001C50` +3 more versions

References

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20180704-01-firewall-en

x_refsource_CONFIRM

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Start Training

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.

Scan Now

CVE-2018-7994

Description

Affected Products

References