CVE-2020-1815
Summary
| CVE | CVE-2020-1815 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2020-02-18 00:15:00 UTC |
| Updated | 2021-07-21 11:39:00 UTC |
| Description | Huawei NIP6800 versions V500R001C30, V500R001C60SPC500, and V500R005C00; Secospace USG6600 and USG9500 versions V500R001C30SPC200, V500R001C30SPC600, V500R001C60SPC500, and V500R005C00 have a memory leak vulnerability. The software does not sufficiently track and release allocated memory while parse certain message, the attacker sends the message continuously that could consume remaining memory. Successful exploit could cause memory exhaust. |
Risk And Classification
Problem Types: CWE-401
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Huawei | Nip6800 | - | All | All | All |
| Hardware | Huawei | Nip6800 | - | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c30 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r005c00 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c30 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Nip6800 Firmware | v500r005c00 | All | All | All |
| Hardware | Huawei | Secospace Usg6600 | - | All | All | All |
| Hardware | Huawei | Secospace Usg6600 | - | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r005c00 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Secospace Usg6600 Firmware | v500r005c00 | All | All | All |
| Hardware | Huawei | Usg9500 | - | All | All | All |
| Hardware | Huawei | Usg9500 | - | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r005c00 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc200 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c30spc600 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r001c60spc500 | All | All | All |
| Operating System | Huawei | Usg9500 Firmware | v500r005c00 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Security Advisory - Memory Leak Vulnerability in Some Firewall Products | CONFIRM | www.huawei.com | Vendor Advisory |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.