HIGH🇬🇧 English

CVE-2021-40008

CVSS 7.5v3.1pub. 2021-12-13upd. 2024-11-21

There is a memory leak vulnerability in CloudEngine 12800 V200R019C00SPC800, CloudEngine 5800 V200R019C00SPC800, CloudEngine 6800 V200R019C00SPC800 and CloudEngine 7800 V200R019C00SPC800. The software does not sufficiently track and release allocated memory while parse a series of crafted binary messages, which could consume remaining memory. Successful exploit could cause memory exhaust.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
  • Huawei Cloudengine 12800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 12800 Firmware

    OS
    Huawei
    v200r019c00spc800
  • Huawei Cloudengine 5800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 5800 Firmware

    OS
    Huawei
    v200r019c00spc800
  • Huawei Cloudengine 6800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 6800 Firmware

    OS
    Huawei
    v200r019c00spc800
  • Huawei Cloudengine 7800

    HW
    Huawei
    wszystkie wersje
  • Huawei Cloudengine 7800 Firmware

    OS
    Huawei
    v200r019c00spc800
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje

Powiązane podatności

CVE-2017-17301CRITICAL9.8ten sam produkt

Huawei AR120-S V200R005C32, V200R006C10, V200R007C00, V200R008C20, AR1200 V200R005C20, V200R005C32, V200R006C1...

CVE-2016-6178CRITICAL9.8ten sam produkt

Huawei NE40E and CX600 devices with software before V800R007SPH017; PTN 6900-2-M8 devices with software before...

CVE-2021-39976HIGH7.8ten sam produkt

There is a privilege escalation vulnerability in CloudEngine 5800 V200R020C00SPC600. Due to lack of privilege ...

CVE-2021-22328HIGH7.5ten sam produkt

There is a denial of service vulnerability in some huawei products. In specific scenarios, due to the improper...

CVE-2021-22332HIGH7.5ten sam produkt

There is a pointer double free vulnerability in some versions of CloudEngine 5800, CloudEngine 6800, CloudEngi...

CVE-2021-40008 — HIGH 7.5 | CVEbaza.pl