Free and open-source vulnerability scanner

Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.

Install Now

Available for macOS, Windows, and Linux

App screenshot

Huawei Data Communication: Out of Bounds Read Vulnerability in Several Products (huawei-sa-20200122-09-eudemon)

Information

Severity

Severity

Low

Family

Family

Huawei

CVSSv2 Base

CVSSv2 Base

3.3

CVSSv2 Vector

CVSSv2 Vector

AV:A/AC:L/Au:N/C:N/I:N/A:P

Solution Type

Solution Type

Vendor Patch

Created

Created

3 years ago

Modified

Modified

3 years ago

Summary

There is an out-of-bounds read vulnerability in several products.

Insight

Insight

The software reads data past the end of the intended buffer when parsing certain crafted DHCP messages. Successful exploit could cause certain service abnormal.

Affected Software

Affected Software

NIP6800 versions V500R001C30 V500R001C60SPC500 V500R005C00 S12700 versions V200R008C00 S2700 versions V200R008C00 S5700 versions V200R008C00 S6700 versions V200R008C00 S7700 versions V200R008C00 S9700 versions V200R008C00 Secospace USG6600 versions V500R001C30SPC200 V500R001C30SPC600 V500R001C60SPC500 V500R005C00 USG9500 versions V500R001C30SPC300 V500R001C30SPC600 V500R001C60SPC500 V500R005C00

Detection Method

Detection Method

Checks if a vulnerable version is present on the target host.

Solution

Solution

See the referenced vendor advisory for a solution.

Common Vulnerabilities and Exposures (CVE)