漏洞标题
N/A
漏洞描述信息
某些 Huawei 产品的漏洞存在一个越界写入漏洞。模块代码存在不良的决策逻辑。攻击者可以通过执行多种异常活动来利用此漏洞,触发不良逻辑并导致越界写入。这可能会损害模块的正常服务。受影响的产品版本包括: NGFW 模块版本 V500R005C00SPC100,V500R005C00SPC200;Secospace USG6300 版本 V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6500 版本 V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6600 版本 V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;USG9500 版本 V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200。
CVSS信息
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
漏洞类别
N/A
漏洞标题
N/A
漏洞描述信息
There is an out-of-bounds write vulnerability in some Huawei products. The code of a module have a bad judgment logic. Attackers can exploit this vulnerability by performing multiple abnormal activities to trigger the bad logic and cause out-of-bounds write. This may compromise the normal service of the module.Affected product versions include: NGFW Module versions V500R005C00SPC100,V500R005C00SPC200;Secospace USG6300 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6500 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;Secospace USG6600 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200;USG9500 versions V500R001C60SPC500,V500R005C00SPC100,V500R005C00SPC200.
CVSS信息
N/A
漏洞类别
N/A
漏洞标题
Huawei NGFW 缓冲区错误漏洞
漏洞描述信息
Huawei NGFW Module是中国华为(Huawei)公司的一款下一代防火墙(NGFW)模块。 Huawei NGFW 存在缓冲区错误漏洞。经过身份验证的远程攻击者可以触发内存损坏并导致目标系统上的服务拒绝状况。以下产品和版本受到影响:NGFW Module versions V500R005C00SPC100,V500R005C00SPC200;Secospace USG6300 versions V500R001C30SPC200,V500R001C30SPC600,V500R001C60SP
CVSS信息
N/A
漏洞类别
缓冲区错误