CVE-2017-17163
MEDIUMHuawei Secospace USG6600 V500R001C30SPC100 - Memory Corruption
Title source: llmDescription
Huawei Secospace USG6600 V500R001C30SPC100 has an Out-of-Bounds memory access vulnerability due to insufficient verification. An authenticated local attacker can make processing crash by executing some commands. The attacker can exploit this vulnerability to cause a denial of service.
References (1)
Core 1
Core References
Vendor Advisory x_refsource_confirm
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171213-01-firewall-en
Scores
CVSS v3
5.5
EPSS
0.0002
EPSS Percentile
6.2%
Attack Vector
LOCAL
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Details
CWE
CWE-119
Status
published
Products (1)
huawei/secospace_usg6600_firmware
v500r001c30spc100
Published
Feb 15, 2018
Tracked Since
Feb 18, 2026