Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
2.1
CVSSv2

CVE-2017-15314

Published: 09/03/2018 Updated: 03/10/2019
CVSS v2 Base Score: 2.1 | Impact Score: 2.9 | Exploitability Score: 3.9
CVSS v3 Base Score: 5.5 | Impact Score: 3.6 | Exploitability Score: 1.8
VMScore: 187
Vector: AV:L/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Summary

Huawei DP300 V500R002C00, RP200 V500R002C00SPC200, V600R006C00, TE30 V100R001C10SPC300, V100R001C10SPC500, V100R001C10SPC600, V100R001C10SPC700, V500R002C00SPC200, V500R002C00SPC500, V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, TE40 V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPC900, V500R002C00SPCb00, V600R006C00, TE50 V500R002C00SPC600, V500R002C00SPC700, V500R002C00SPCb00, V600R006C00, TE60 V100R001C10, V500R002C00, V600R006C00 have a memory leak vulnerability due to memory don't be released when the XML parser process some node fail. An attacker could exploit it to cause memory leak, which may further lead to system exceptions.

Vulnerable Product Search on Vulmon Subscribe to Product

huawei dp300_firmware v500r002c00

huawei rp200_firmware v600r006c00

huawei rp200_firmware v500r002c00spc200

huawei te30_firmware v500r002c00spc200

huawei te30_firmware v500r002c00spc500

huawei te30_firmware v500r002c00spc600

huawei te30_firmware v500r002c00spc700

huawei te30_firmware v100r001c10spc300

huawei te30_firmware v100r001c10spc600

huawei te30_firmware v500r002c00spcb00

huawei te30_firmware v100r001c10spc500

huawei te30_firmware v100r001c10spc700

huawei te30_firmware v500r002c00spc900

huawei te30_firmware v600r006c00

huawei te40_firmware v500r002c00spcb00

huawei te40_firmware v500r002c00spc600

huawei te40_firmware v500r002c00spc700

huawei te40_firmware v500r002c00spc900

huawei te40_firmware v600r006c00

huawei te50_firmware v500r002c00spc600

huawei te50_firmware v500r002c00spc700

huawei te50_firmware v600r006c00

huawei te50_firmware v500r002c00spcb00

huawei te60_firmware v100r001c10

huawei te60_firmware v600r006c00

huawei te60_firmware v500r002c00

References

CWE-772http://www.huawei.com/en/psirt/security-advisories/huawei-sa-20171129-01-xml-enhttps://nvd.nist.gov
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
cross-site scriptingCVE-2024-5158XML external entityCVE-2024-4262CVE-2024-2036CVE-2024-4985CVE-2024-21791remote attackersCVE-2023-43208
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook