CVE-2017-17329

Опубликовано: 09 мар. 2018

Источник: nvd

CVSS3: 3.3

CVSS2: 2.1

EPSS Низкий

Описание

Huawei ViewPoint 8660 V100R008C03 have a memory leak vulnerability. The software does not release allocated memory properly when parse XML Schema data. An authenticated attacker could upload a crafted XML file, successful exploit could cause the system service abnormal since run out of memory.

Ссылки

http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-03-xml-en
Vendor Advisory
http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171206-03-xml-en
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:huawei:viewpoint_8660_firmware:v100r008c03:*:*:*:*:*:*:*

cpe:2.3:h:huawei:viewpoint_8660:-:*:*:*:*:*:*:*

EPSS

Процентиль: 7%

0.00026

Низкий

3.3 Low

CVSS3

2.1 Low

CVSS2

Дефекты

CWE-772

Связанные уязвимости

GHSA-4hjg-62xc-cfw3