PT-2018-5786 · Huawei · Te50+5
Publicado
2018-03-09
·
Atualizado
2019-10-03
·
CVE-2017-15314
CVSS v3.1
5.5
Média
| Vetor | AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H |
Name of the Vulnerable Software and Affected Versions:
Huawei DP300 versions V500R002C00
Huawei RP200 versions V500R002C00SPC200, V600R006C00
Huawei TE30 versions V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00
Huawei TE40 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00
Huawei TE50 versions V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00
Huawei TE60 versions V100R001C10, V500R002C00, V600R006C00
Description:
The issue is caused by a memory leak when the XML parser processes some nodes that fail, resulting in memory not being released. An attacker could exploit this to cause a memory leak, potentially leading to system exceptions.
Recommendations:
At the moment, there is no information about a newer version that contains a fix for this vulnerability.
Missing Release of Resource after Effective Lifetime
Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
Enumeração de Fraquezas
Identificadores relacionados
Produtos afetados
Dp300
Rp200
Te30
Te40
Te50
Te60