CVE-2017-17330
N/A
N/A
Summary
Huawei AR3200 V200R005C32; V200R006C10; V200R006C11; V200R007C00; V200R007C01; V200R007C02; V200R008C00; V200R008C10; V200R008C20; V200R008C30; NGFW Module V500R001C00; V500R001C20; V500R002C00 have a memory leak vulnerability. The software does not release allocated memory properly when parse XML element data. An authenticated attacker could upload a crafted XML file, successful exploit could cause the system service abnormal since run out of memory.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | AR3200 V200R005C32 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R006C10 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R006C11 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R007C00 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R007C01 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R007C02 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R008C00 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R008C10 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R008C20 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V200R008C30 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | NGFW Module V500R001C00 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V500R001C20 | affected |
| Huawei Technologies Co., Ltd. | AR3200; NGFW Module | V500R002C00 | affected |
Weaknesses
- memory leak
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.