Huawei : Huawei Data Communication: Out of Bounds Write Vulnerability in Some Huawei Products (huawei-sa-20211020-01-outofwrite)

Anfälligkeitssuche		Suche in 324607 CVE Beschreibungen und 145615 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.147027

Kategorie: Huawei

Titel: Huawei Data Communication: Out of Bounds Write Vulnerability in Some Huawei Products (huawei-sa-20211020-01-outofwrite)

Zusammenfassung: There is an out of bounds write vulnerability in some Huawei; products.

Beschreibung: Summary:
There is an out of bounds write vulnerability in some Huawei
products.

Vulnerability Insight:
The vulnerability is caused by a function of a module that does
not properly verify input parameter. Successful exploit could cause out of bounds write leading
to a denial of service condition.

Vulnerability Impact:
Successful exploit could cause out of bounds write leading to
a denial of service condition.

Affected Software/OS:
IPS Module versions V500R005C00, V500R005C20

NGFW Module versions V500R005C00

NIP6600 versions V500R005C00, V500R005C20

S12700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600, V200R013C00SPC500,
V200R019C00SPC200, V200R019C00SPC500, V200R019C10SPC200, V200R020C00, V200R020C10

S1700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600

S2700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600

S5700 versions V200R010C00SPC600, V200R010C00SPC700, V200R011C10SPC500, V200R011C10SPC600,
V200R019C00SPC500

S6700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600

S7700 versions V200R010C00SPC600, V200R010C00SPC700, V200R011C10SPC500, V200R011C10SPC600

S9700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600

USG9500 versions V500R005C00, V500R005C20

Solution:
See the referenced vendor advisory for a solution.

CVSS Score:
5.0

CVSS Vector:
AV:N/AC:L/Au:N/C:N/I:N/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2021-37129
https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20211020-01-outofwrite-en

Copyright Copyright (C) 2021 Greenbone Networks GmbH

Dies ist nur einer von 145615 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.147027
Kategorie:	Huawei
Titel:	Huawei Data Communication: Out of Bounds Write Vulnerability in Some Huawei Products (huawei-sa-20211020-01-outofwrite)
Zusammenfassung:	There is an out of bounds write vulnerability in some Huawei; products.
Beschreibung:	Summary: There is an out of bounds write vulnerability in some Huawei products. Vulnerability Insight: The vulnerability is caused by a function of a module that does not properly verify input parameter. Successful exploit could cause out of bounds write leading to a denial of service condition. Vulnerability Impact: Successful exploit could cause out of bounds write leading to a denial of service condition. Affected Software/OS: IPS Module versions V500R005C00, V500R005C20 NGFW Module versions V500R005C00 NIP6600 versions V500R005C00, V500R005C20 S12700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600, V200R013C00SPC500, V200R019C00SPC200, V200R019C00SPC500, V200R019C10SPC200, V200R020C00, V200R020C10 S1700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600 S2700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600 S5700 versions V200R010C00SPC600, V200R010C00SPC700, V200R011C10SPC500, V200R011C10SPC600, V200R019C00SPC500 S6700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600 S7700 versions V200R010C00SPC600, V200R010C00SPC700, V200R011C10SPC500, V200R011C10SPC600 S9700 versions V200R010C00SPC600, V200R011C10SPC500, V200R011C10SPC600 USG9500 versions V500R005C00, V500R005C20 Solution: See the referenced vendor advisory for a solution. CVSS Score: 5.0 CVSS Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2021-37129 https://www.huawei.com/en/psirt/security-advisories/huawei-sa-20211020-01-outofwrite-en
Copyright	Copyright (C) 2021 Greenbone Networks GmbH