CVE-2016-5435
MEDIUMHuawei IPS/NGFW/NIP6300/NIP6600/USG6300/USG6500/USG6600/USG9500/AntiDDoS8000 < V500R001C20SPC100 DoS via Memory Leak
Title source: llmDescription
Memory leak in Huawei IPS Module, NGFW Module, NIP6300, NIP6600, and Secospace USG6300, USG6500, USG6600, USG9500, and AntiDDoS8000 V500R001C00 before V500R001C20SPC100, when in hot standby networking where two devices are not directly connected, allows remote attackers to cause a denial of service (memory consumption and reboot) via a crafted packet.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20160615-01-standby-en
Scores
CVSS v3
5.9
EPSS
0.0015
EPSS Percentile
34.6%
Attack Vector
NETWORK
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-399
Status
published
Products (1)
huawei/huawei_firmware
v5500r001c00
Published
Jun 24, 2016
Tracked Since
Feb 18, 2026