Lucene search

[email protected]NVD:CVE-2021-40042

HistoryJan 31, 2022 - 4:15 p.m.

CVE-2021-40042

2022-01-3116:15:09

CWE-763

[email protected]

web.nvd.nist.gov

huawei

vulnerability

abnormal process

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

35.0%

JSON

There is a release of invalid pointer vulnerability in some Huawei products, successful exploit may cause the process and service abnormal. Affected product versions include: CloudEngine 12800 V200R019C10SPC800, V200R019C10SPC900; CloudEngine 5800 V200R019C10SPC800, V200R020C00SPC600; CloudEngine 6800 versions V200R019C10SPC800, V200R019C10SPC900, V200R020C00SPC600, V300R020C00SPC200; CloudEngine 7800 V200R019C10SPC800.

Affected configurations

Nvd

Node

huaweicloudengine_12800_firmwareMatchv200r019c10spc800

huaweicloudengine_12800_firmwareMatchv200r019c10spc900

AND

huaweicloudengine_12800Match-

Node

huaweicloudengine_5800_firmwareMatchv200r019c10spc800

huaweicloudengine_5800_firmwareMatchv200r020c00spc600

AND

huaweicloudengine_5800Match-

Node

huaweicloudengine_6800_firmwareMatchv200r019c10spc800

huaweicloudengine_6800_firmwareMatchv200r019c10spc900

huaweicloudengine_6800_firmwareMatchv200r020c00spc600

huaweicloudengine_6800_firmwareMatchv300r020c00spc200

AND

huaweicloudengine_6800Match-

Node

huaweicloudengine_7800_firmwareMatchv200r019c10spc800

AND

huaweicloudengine_7800Match-

VendorProductVersionCPE
huaweicloudengine_12800_firmwarev200r019c10spc800cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r019c10spc800:*:*:*:*:*:*:*
huaweicloudengine_12800_firmwarev200r019c10spc900cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r019c10spc900:*:*:*:*:*:*:*
huaweicloudengine_12800-cpe:2.3:h:huawei:cloudengine_12800:-:*:*:*:*:*:*:*
huaweicloudengine_5800_firmwarev200r019c10spc800cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r019c10spc800:*:*:*:*:*:*:*
huaweicloudengine_5800_firmwarev200r020c00spc600cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r020c00spc600:*:*:*:*:*:*:*
huaweicloudengine_5800-cpe:2.3:h:huawei:cloudengine_5800:-:*:*:*:*:*:*:*
huaweicloudengine_6800_firmwarev200r019c10spc800cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r019c10spc800:*:*:*:*:*:*:*
huaweicloudengine_6800_firmwarev200r019c10spc900cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r019c10spc900:*:*:*:*:*:*:*
huaweicloudengine_6800_firmwarev200r020c00spc600cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r020c00spc600:*:*:*:*:*:*:*
huaweicloudengine_6800_firmwarev300r020c00spc200cpe:2.3:o:huawei:cloudengine_6800_firmware:v300r020c00spc200:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
huawei	cloudengine_12800_firmware	v200r019c10spc800	cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r019c10spc800:::::::*
huawei	cloudengine_12800_firmware	v200r019c10spc900	cpe:2.3:o:huawei:cloudengine_12800_firmware:v200r019c10spc900:::::::*
huawei	cloudengine_12800	-	cpe:2.3:h:huawei:cloudengine_12800:-:::::::*
huawei	cloudengine_5800_firmware	v200r019c10spc800	cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r019c10spc800:::::::*
huawei	cloudengine_5800_firmware	v200r020c00spc600	cpe:2.3:o:huawei:cloudengine_5800_firmware:v200r020c00spc600:::::::*
huawei	cloudengine_5800	-	cpe:2.3:h:huawei:cloudengine_5800:-:::::::*
huawei	cloudengine_6800_firmware	v200r019c10spc800	cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r019c10spc800:::::::*
huawei	cloudengine_6800_firmware	v200r019c10spc900	cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r019c10spc900:::::::*
huawei	cloudengine_6800_firmware	v200r020c00spc600	cpe:2.3:o:huawei:cloudengine_6800_firmware:v200r020c00spc600:::::::*
huawei	cloudengine_6800_firmware	v300r020c00spc200	cpe:2.3:o:huawei:cloudengine_6800_firmware:v300r020c00spc200:::::::*

Rows per page:

1-10 of 131

References

www.huawei.com/en/psirt/security-advisories/huawei-sa-20220112-01-invalid-en

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:S/C:N/I:N/A:P

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

EPSS

0.001

Percentile

35.0%

JSON

Related for NVD:CVE-2021-40042

cvelist1 cnvd1 prion1 openvas1 cve1 huawei1